PCI Fundamentals assures that all candidates attending the ISA training course have the same baseline understanding. The PCI Fundamentals course must be completed within thirty days of initial access and a minimum of one week prior to the start of an on-site training class. This prerequisite course covers:

• Understanding the Payment Card Industry Security Standards Council and its role
• Defining the processes involved in card processing
• PCI roles and responsibilities
• Understanding cardholder data
• Defining network segmentation
• PCI DSS assessments

Candidates who successfully complete the prerequisite PCI Fundamentals course may move on to the ISA qualification course. This course builds on the knowledge gained in PCI Fundamentals and delves into the actual PCI DSS requirements, testing procedures, compliance reports and more. The Internal Security Assessor course covers:

• What is PCI and what does it mean to companies that must meet compliance with the DSS?
  • Industry overview
  • Terminology
  • Transaction data flow
  • Relationships between various organizations in the process
• How the credit card brands differ in their validation and reporting requirements
• PCI Data Security Standard (DSS)
  • Overview of each requirement
  • Testing procedures
  • What constitutes compliance
• PCI Hardware and Communications Infrastructure
• PCI Reporting
• Overview of compliance issues and mitigation strategies
• Compensating controls
• Creating policies
• Modifying cardholder data environment

The instructor-led course includes case studies providing a simulation of assessment scenarios that may help you in solving common problems within your own payment environment.

The online prerequisite course concludes with a 60 question multiple-choice exam. Once the candidate has completed the PCI Fundamentals training and exam, the Primary Contact will be notified of either a passing or failing grade. If the candidate failed the exam, he or she will be allowed two additional attempts to take and pass without being charged an additional fee.*

*If the candidate receives a failing grade for the PCI Fundamentals course after the third attempt, his or her seat at the instructor-led session will be forfeited. If he or she wishes to try again, the candidate will be required to pay the full course fee for a second time and receive a passing grade in the PCI Fundamentals course to be allowed to attend the two-day instructor-led session. There will be no exceptions made and by paying the invoice, you agree to these terms.

This two-day classroom instruction provides:

• In-person engagement and collaboration as well as networking opportunities
• Ability to focus on curriculum in classroom setting
• Learn directly from an expert PCI SSC trainer with hands-on experience assessing merchants and/or service providers

Taking the exam - The certification exam is given immediately following the instructor-led course. The only document you will be allowed to reference during the testing is a translation dictionary, if needed.  No electronic devices may be used during the exam. This is a closed book exam. The exam consists of 75 multiple choice questions. You will have 90 minutes to complete it.

The Primary Contact at the Sponsor Company will be notified of results within two weeks after the ISA candidate attends the instructor-led PCI SSC ISA training and exam. Candidates who fail this exam may pay $165 and retake the exam at a Pearson VUE Testing Center within 30 days of failing status notification. Candidates who wish to enroll in a second class will be required to pay the full costs for the chosen location and will be required to retake and pass PCI Fundamentals. If the candidate passes, the Sponsor Company will be sent a certificate that validates the candidate's active ISA status for the next 12 months.

This self-paced online eLearning course offers:

• Flexible scheduling 24/7/365
• Learn from your home or office
• Reduced travel costs and time away from work

Taking the exam - Upon completion of the eLearning curriculum, the student will take the qualification exam at one of over 4,000 Pearson VUE Testing Centers worldwide. The student will receive a voucher number to be redeemed in Pearson VUE's online registration system; testing location and time are selected by the student. The exam must be completed in one sitting and must be taken within 90 days of the candidate being given the information on how to schedule the exam.

Candidates who fail this exam may pay $165 and retake the exam at a Pearson VUE Testing Center within 30 days of failing status notification. If the candidate fails the second exam, he/she is required to pay for and retake the entire course, including PCI Fundamentals, in either instructor-led or eLearning format.