stefan big


I have taken over the technical deployment division for PayU Romania three years ago. Before that I have been working inside and then coordinating the antifraud/risk department for four years where I’ve developed my affinity for data security.

In the last three years, I have successfully managed to coordinate and improve the PayU platforms deployment in 5 countries, in the same time ensuring that we strictly follow the PCI Security Standards.

One of my biggest achievements so far was to implement an easy-to-follow development life cycle that ensures the PCI Security Standards for any issue involved, as well as making it easier for anyone involved to understand and apply them


Time of presentation: Monday, June 24th, 2013 15:30 - 16:15

Track:Track 1

Topic of Presentation: Easy to follow PCI DSS requirements in development workflows

: Imagine yourself as a developer working on a project without any concern about the PCI DSS regulations, working on an environment built not only to ensure that the compliance is followed, but also to ease the creation of audit logs making it almost an invisible process for anyone involved in the development process.

I will be discussing the issue life cycle, starting with request and continuing with the production servers, the audit logs created in the background and how everything can be served to a QSA without missing any step.