The release of PCI DSS v4.0 on March 31, 2022, is a significant update addressing critical payment card transaction risks. It introduces 64 new compliance requirements by March 31, 2025, with 13 of those requirements in effect now.
The update emphasizes continuous security posture monitoring, focusing more on outcomes than assessments, and merges cybersecurity and fraud management. With just over a year remaining to address all the new requirements, compliance and security personnel must understand the implications of these changes and the urgency of implementing the new required capabilities.