.png?noresize&width=1875&height=1875&name=PCI%20DSS%20WEBINAR%20(3).png)
Beyond Static Secrets:
Modernizing API Security for PCI DSS 4.0
Date: 19th June 2025
Time: 3:00 PM BST / 10:00 AM ET
Duration: 20 minutes
/Ministry%20of%20Defence.svg?noresize)
/Open%20Banking%20UK.svg?noresize)
/Commonwealth%20Bank.svg?noresize)
/Foreign%20%26%20Commonwealth%20Office.svg?noresize)
/Lloyds%20Banking%20Group.svg?noresize)
/Open%20Insurance%20Brasil.svg?noresize)
/Westpac.svg?noresize)
Are You Ready for PCI DSS 4.0?
Static secrets and hardcoded credentials are no longer acceptable - and PCI DSS 4.0 Requirement 8.6.3 makes that crystal clear.
Join us for a focused 20-minute session to discover how your organisation can modernise API security, eliminate static credentials, and automate compliance with the latest PCI DSS standards - all without disrupting developer experience..png?width=340&height=237&name=CTA%20Raidiam%20Connect%20page%20(3).png)
What You’ll Learn
In just 20 minutes, you’ll walk away with a clear understanding of:
-
What PCI DSS 4.0 (specifically clause 8.6.3) requires for API credentials
-
Why static secrets and manual credential rotation are compliance risks
-
How Raidiam Connect enables fully automated, auditable credential lifecycles
-
How to adopt asymmetric authentication using mTLS and private_key_jwt
-
Real-world examples of secure client registration, certificate minting, and access control
-
What a fully compliant, scalable API security model looks like in action
What You’ll Gain
By the end of this webinar, you’ll:
- Understand exactly what you need to do to comply with PCI DSS 4.0 Clause 8.6.3
- Learn how to eliminate static secrets from your ecosystem
- See how certificate-based, policy-driven API security can be deployed in minutes
- Get actionable next steps: from readiness checklists to live demos
- Walk away with a modern, future-proof model for secure credential management
Meet your speakers
.png?width=150&height=150&name=PCI%20DSS%20WEBINAR%20(4).png)
Dörte Dye
Industry Expert and Advisor
Dörte Dye is a seasoned payments and compliance expert with over two decades of experience in the financial services industry. As Director at Thrive Payments Consultancy, she specializes in guiding organizations through complex regulatory landscapes and implementing robust, scalable API security solutions. Dörte has held leadership roles across various fintech and financial institutions, where she has been instrumental in enhancing operational resilience and ensuring regulatory compliance. Her deep understanding of payment systems and security frameworks makes her a valuable contributor to discussions on modern API security practices.-1.png?width=150&height=150&name=PCI%20DSS%20WEBINAR%20(2)-1.png)
David Oppenheim
Head of Enterprise Strategy, Raidiam
David Oppenheim leads enterprise strategy at Raidiam, helping organisations modernise their infrastructure for secure, scalable API ecosystems. With prior leadership roles at Paymentology and Thought Machine, he brings deep expertise in fintech, API design, and regulatory compliance. David is a frequent speaker at global technology and security events, where he shares practical insights on building resilient systems that meet today’s evolving compliance requirements.
John Heaton-Armstrong
Senior Consultant, Raidiam
John Heaton-Armstrong is a cybersecurity and identity specialist with a career spanning senior roles, including CISO at Account Technologies and key security leadership at Thredd. At Raidiam, he focuses on designing secure API architectures and guiding organisations through complex compliance challenges. Known for his expertise in identity, encryption, and credential lifecycle management, John brings a practical, engineering-first perspective to modern API security.