Skip to Main Content
Save 25% on selected auditor training courses. Find out more
PCI DSS Implementation Training Course

PCI DSS Lead Implementer Training Course

SKU: 4178
  • Gain the skills to lead and manage a PCI DSS (Payment Card Industry Data Security Standard) v4.0 implementation project.
  • Train with the experts on this industry-leading course developed by our PCI QSAs (Qualified Security Assessors).
  • Learn from anywhere with our Live Online course.
  • Gain the PCI DSS Lead Implementer (PCI DSS LI) qualification and 21 CPD/CPE points by passing the exam which is included with the training
Step 1 - Select location
Step 2 - Select date
Price: 2.335,00 €
Step 3 - Select quantity

The PCI DSS Implementation training course outline

The PCI DSS Lead Implementer Training Course delivers the knowledge and skills needed to implement the technical and business controls required to meet the 12 requirements of PCI DSS v4.0.

Version 4.0 of the PCI DSS was published on March 31, 2022. To provide organizations with the time to implement the more complex requirements of version 4.0, Version 3.2.1 will remain active until it is retired on March 31, 2024. If you require the skills to lead and manage a PCI DSS v3.2.1 implementation project, please purchase our Self-paced online course.

Get ahead and train now to implement PCI DSS V4.0. The updates meet the evolving cybersecurity needs of the payments industry, promote security as a continuous process, and enable organizations to use different methods to achieve their security objectives.

By taking this course, you will:

  • Get an understanding of the principles and application of PCI DSS scoping;
  • Gain in-depth knowledge of the 12 PCI DSS requirements;
  • Acquire the skills to apply the requirements to your organisation;
  • Find out how to create a PCI DSS implementation readiness programme for SAQ (self-assessment questionnaire) or external audit; and
  • Receive practical advice from an experienced PCI DSS consultant.

PCI DSS Lead Implementer Training Course benefits  

  Understand PCI DSS best practice

Learn in-depth about the PCI DSS assessment, test procedures and reporting requirements.

  Learn from anywhere

Choose whether you attend Live Online or in person at one of our training venues.

  Interactive study

Take part in interactive sessions that will allow attendees to ask questions relating to their own organisation and cardholder environment.

  Delivered by professionals

Gain insight into a QSA auditor’s perspective on scoping and reduction, gap analysis, remediation and auditing issues.

Who should attend this course?

This course is designed for individuals responsible for implementing all or part of the technical and business requirements of the Standard.

This course is also suitable for consultants seeking to provide PCI implementation advice to their respective client organisations.

Your learning path

Find out how the PCI DSS Lead Implementer Training Course will help you start or enhance your knowledge and career.

This course is an essential component of the following learning path:

Image containing Information Security Learning Path

Why choose IT Governance for your training needs?

  • IT Governance Ltd is a QSA (Qualified Security Assessor) approved by the PCI SSC (Security Standards Council), which means we regularly audit PCI compliance in a wide range of organisations.
  • By choosing us for PCI training you will benefit from our wealth of practical experience gained as a QSA.
  • Our course provides a practical, hands-on approach, allowing attendees to gain a clear understanding of the PCI DSS and the tools needed to apply that knowledge in their organisation’s payment environment.
Course details

What does this course cover?

Day 1

  • Applying PCI DSS scoping techniques to a given environment.
  • Defining and identifying the relationship between each of the 12 PCI DSS requirements and an organisation.
  • Installing and maintaining network security controls.
  • How to apply secure configurations to all system components using tools and sites.
  • Methods of storing cardholder data and assurance to confirm data locations.
  • Methods of encryption and cryptography for transmitting cardholder data across open, public networks.
  • Selecting antivirus solutions for traditional and organisational settings.

Day 2

  • The OWASP (Open Web Application Security Project) Top 10 and identifying updates to the risk register.
  • Managing access to cardholder data.
  • Identifying user accounts and implementing MFA (multifactor authentication) where required.
  • Constructing a merchant premises that restricts physical access and includes locks, RFID, CCTV, PED storage and PED checks.
  • Analysing and reviewing logs in the event viewer to identify access to network resources.
  • Determining appropriate testing methods such as penetration testing, vulnerability scanning, ASV scanning and segmentation testing.

Day 3

  • How to maintain an information security policy for all users.
  • Understanding the option of using a customised approach.
  • How to carry out a risk analysis.
  • PCI DSS implementation readiness preparation and exercise.
  • Summary and exam preparation.

What’s included in this course?

  • Full course materials (digital copy provided as a PDF file).
  • The PCI DSS Lead Implementer exam.
  • A certificate of attendance.

What equipment should I bring?

The exam is an online exam. You will need to bring a ‘pop-up enabled’ laptop/tablet to the venue. Full details on how to access the exam will be provided by email 1–2 days before sitting the exam.

What equipment should I bring?

The exam is an online exam. You will need to bring a ‘pop-up enabled’ laptop/tablet to the venue. Full details on how to access the exam will be provided by email 1–2 days before sitting the exam.

Course duration and times

Day 1: 9.30 am – 5:00 pm
Day 2: 9.30 am – 5:00 pm
Day 3: 9.30 am– 5:00 pm (exam), 5:30 pm (optional consultancy session)

CPD/CPE points

This course is equivalent to 21 CPD/CPE points.

Exams and qualifications

PCI DSS Lead Implementer exam

Candidates take the PCI DSS Lead Implementer (PCI DSS LI) exam set by IBITGQ
(International Board for IT Governance Qualifications). There is no extra charge for this exam.

  • Delivery method: Online
  • Duration: 90 minutes
  • Questions: 40
  • Format: Multiple choice
  • Pass mark: 65%

What qualifications will I receive?

PCI DSS Lead Implementer (PCI DSS LI).


This course holds accreditation from IBITGQ (International Board for IT Governance Qualifications), a renowned authority in personnel certification within the field of IT governance.

As a premier personnel certification body, IBITGQ specialises in certifying individuals who demonstrate exceptional proficiency in IT governance practices.

IBITGQ maintains accreditation to the ISO/IEC 17024:2012 standard, a globally recognised benchmark for conformity assessment. Accreditation by the International Accreditation Service (IAS) further underscores the course's commitment to meeting stringent certification requirements.

ISO 17024 certification is esteemed within the industry and universally acknowledged by employers worldwide. By aligning with this standard, our course ensures that your qualifications are not only recognised but also highly valued by employers across diverse sectors.

Upon successful completion of the course, you have the opportunity to validate your professional expertise by registering your qualification on the esteemed IBITGQ/GASQ successful candidate register. This platform serves as a testament to your commitment to excellence in IT governance, setting you apart as a distinguished professional in the field.

Do I need to bring proof of identity?

Delegates must bring a form of photographic ID with them as the invigilator my request to check it prior to the exam.

How will I receive my exam results and certificates?

  • Provisional exam results will be available immediately on completion of the exam. Confirmed exam results will be issued within ten working days from the date of the exam.
  • Certificates for those who have achieved a passing grade will be issued within ten working days from the date of the exam.
  • Results notifications and certificates are sent directly to candidates by the relevant exam board in electronic format; please note that hard copy exam certificates are not issued.

Can exams be retaken?

Yes, you can retake the exam at an extra cost if you are unsuccessful on the first attempt. You can email us to schedule the retest for the exam.


Are there any prerequisites for this course?

There are no pre-requisites for sitting this course.

Is there any recommended reading?

We recommend that all attendees download and read the free PCI DSS document from the PCI SSC website.

Customer Reviews

SAVE 25%