Let's start with the basics...What is PCI and why is it important?
The Payment Card Industry Data Security Standard (PCI DSS) is an information security standard for organizations that handle credit cards. The standard was created to increase controls around cardholder data to reduce fraud. Validation of compliance is performed annually or quarterly.
It is a PCI DSS requirement to have a secure development lifecycle. Requirements states: