PCI DSS Myths, Facts and Compliance Strategies
Podcast series with LRQA and Key IVR
Managing payment security and PCI DSS compliance can present significant challenges, particularly for organisations handling card data over the phone. Clarity around scope, responsibilities and best practice is essential to reducing risk and maintaining customer trust.
In this two-part podcast series, LRQA and Key IVR bring together technical expertise and practical experience to explore common misconceptions, explain core requirements and share effective approaches to managing PCI DSS compliance.
These sessions are designed to support organisations at any stage of their compliance journey, offering clear, actionable guidance to help strengthen security and simplify processes.
Podcast 1: PCI DSS Myths and Facts and Understanding Scope
In the first session of the Staying Agile Podcast series, Mark Kelly of Key IVR and Kieran Nalton, Head of PCI Services at LRQA, examine the fundamentals of PCI DSS scope and address common areas of confusion.
Key topics include:
- How to determine whether your organisation falls within PCI DSS scope
- The role of third-party providers in supporting secure payment handling
- Important considerations when selecting a payment solution provider
- Approaches to simplifying and future-proofing your payment processes
Podcast 2: Practical Compliance Strategies and Building Resilience
The second session builds on these foundations, focusing on the practical application of PCI DSS requirements and how organisations can approach compliance with greater confidence.
Mark Kelly and Kieran Nalton explore how to move beyond a basic compliance mindset and instead use PCI DSS as a framework to strengthen operational resilience and customer trust.
Key topics include:
- Addressing common PCI DSS misconceptions
- Implementing practical and sustainable compliance strategies
- Moving beyond a tick-box approach to compliance
- Using compliance to support trust, resilience and long-term business performance