Taking control of JavaScript is essential for entities wanting to meet the new requirements in PCI DSS v4 designed to prevent and detect ecommerce skimming attacks. This isn’t as easy as it sounds because it typically needs people and processes, as much as technology. We’ll explore the changes in business processes needed to manage JavaScript and also consider the pros, cons, and challenges of differing technical solutions that determine the way that scripts are approved.