Payment Card Industry (PCI) Security Audit
Due to the growing problem of credit card fraud and identity theft, the five major credit card companies (American Express, Discover Financial Services, JCB, MasterCard Worldwide, and Visa International) united to support a new independent body, known as the Payment Card Industry Security Standards Council (PCI SSC), to strengthen security controls among their members.
Together they developed the Payment Card Industry Data Security Standard (PCI DSS), and all have agreed to incorporate the PCI DSS as the technical requirements of each of their data security compliance programs.
What's the Impact to Your Business?
Any company that stores, processes, or transmits cardholder data must comply with the PCI. This includes anyone from online stores, to small mom and pop shops, to large corporations.
For many, complying with the PCI DSS often means a significant investment in both money and resources. H owever, it can also render positive results for organizations in a number of key areas, including the following:
- Preventing damage to image and reputation
- Prioritizing information risks
- Retaining customers
- Increasing comfort level with senior management
Foundstone's Approach
As a certified QSA and ASV, Foundstone Professional Services has developed a measured approach to help steer organizations towards compliance. Foundstone’s approach consists of five phases:
- Data Flow Analysis
- Preliminary Gap Analysis
- Network Vulnerability Scanning
- Report on Compliance (ROC)
- Remediation Planning and Road Map
Click here to view a full datasheet of this service.
Contact us so you can be on your way to PCI compliance.
