|
|
|
|
|
Identity theft is a crime that impacts consumers, retail merchants, and financial
institutions worldwide. Just last year, consumers in the United States filed over
685,000 complaints and reported losses of more than $680 million. More than 100
million identities have been reported as compromised in the last two years. This
crime is also burgeoning in Europe: identity theft in the UK has increased 500%
since 1999 with an estimated loss of £3,039 per victim. Therefore, the Payment Card
Industry Data Security Standard (PCI DSS) and Payment Application Data Security
Standard (PA-DSS) standards have been established to bolster the security of credit
card data when it is collected, processed, stored and transmitted.
Our Threat Mitigation team members work with clients in a range of industries such
as finance, e-Commerce, retail, healthcare, payment cards, and higher education
to protect their credit card data and other sensitive information. We are approved
by the Payment Card Industry Security Standards Council (PCI SSC) as both a Payment
Card Industry Qualified Security Assessor (PCI QSA) and a Payment Application Qualified
Security Assessor (PA-QSA). We are one of a limited number of companies certified
to provide assessments to organizations in the six major world markets of Europe,
Middle East, Asia Pacific, Africa, Latin America, Canada and US, which allows us
to help our clients in their international and American-based locations.
The services we provide to protect your organization’s credit card data are as follows:
|
|
|
|
|
|
|
|
Gap Analysis: Preliminary assessment of your organization’s
current state per PCI DSS requirements.
|
|
|
|
|
Compliance Audit: Targeted audit of your cardholder environment, based on data flow
analysis and the specific impacts on your policies, procedures, systems, and people.
|
|
|
|
|
Self-Assessment Questionnaire (SAQ) Assistance: Assessment of your cardholder environment
with insights to successfully achieving compliance and accurately completing the
SAQ.
|
|
|
|
|
Quarterly ASV Scans: Vulnerability scanning of your cardholder environment.
|
|
|
|
|
Monitoring and Updates: Ongoing advice on how organizational changes will impact
your compliance and updates on evolving PCI requirements.
|
|
|
|
|
|
|
|
|
|
Assessment and Validation: Focused evaluation and subsequent validation of your payment application’s compliance with PA-DSS requirements.
|
|
|
|
|
Implementation Guide Assistance: : Expert advice on efficiently creating the newly required Implementation Guide for your customers and resellers.
|
|
|
|
|
Monitoring and Updates: Ongoing updates of requirement changes, review of application changes and annual application revalidation.
|
|
|
|
|
