I have been distracted in the past week by the Facebook flaw and I have overlooked a couple of posts I should have made. The first one is the release of the PCI Councils prioritised approach for PCI DSS 1.2.
The council seem to have done a very good job here, the excel sheet you can download for free serves as a compliance tracking tool which I will be using myself going forward – its amazing, I had something similar already but it is very good. The tool allows you to track the compliance status of all of the requirements as well as viewing milestones and will finally serve as the attestation of compliance. The pdf and the tool will help companies new to compliance as well as companies with compliance experiences by giving them guidance on which requirements to address first, second, third etc.
Let me know what you think, my early impressions are that the PCI Council have provided some useful guidance and a nice tool for anyone to use.