Payment Card Data Security
Challenging Times – Securing Commerce
With an increase in identity theft and loses due to fraudulent credit card use, payment card providers, like Visa, have responded with an information security compliance program designed to ensure the security of commerce.
Businesses increasingly face regulatory and compliance pressures. To avoid facing fines and penalties, which can reach as high as $500,000 per incident for any merchant or service provider that is found in non-compliance at the time of incident, it is imperative that merchants and service providers maintain an information security program that ensures PCI DSS compliance.
Extensive Experience and Resources
Sword & Shield offers access to world class experience in consulting on compliance initiatives.
Capabilities
- Consulting for PCI Audit Preparedness
- Penetration Testing to meet annual requirements
- Managed services for required scanning
- First response support for major payment card security incidents
- Security program development
Payment Card Data Security
Payment card data security compliance is required of all merchants and service providers who store, process, or transmit Visa cardholder information. The program applies to all forms of payment channels and compliance must be validated by a third party assessor for merchants and service providers that meet the criteria defined by Visa. To achieve compliance, merchants and service providers must adhere to the PCI Data Security Standard, and ensure the security controls are incorporated into the corporate security program. The PCI Data Security Standard contains twelve key security control domains which provide the security framework addressing many areas of information, network, and application security.
A Partner in Security
As a Qualified Security Assessor, Sword & Shield is one of only a few companies in the nation and in the Southeastern US authorized by the Payment Card Industry Security Standards Council to provide assessment and audit services for merchants and service providers.
Annual On-site Assessment
For Annual On-site PCI Data Security Assessments, the Sword & Shield assessment and compliance team conducts a thorough review and analysis in evaluating the effectiveness of meeting these high-level security requirements. Where remediation is needed, Sword & Shield offers the advice and consulting in the steps needed to take corrective action and ensure compliance. Because we take your success seriously, our audit team doesn't just test and run, we provide ongoing availability, advice, and consulting to you and your team of vendors to adequately and effectively meet the objectives of PCI data security.
Proven Approach
Compliance rules and determining what security methods and technologies to employ is a rapidly changing landscape. Keeping up with the latest technology developments, regulatory guidelines, and industry best practices can be very demanding on resources. Sword & Shield provides a well qualified team of professionals with a proven track record of developing cost-effective, flexible, and manageable security solutions tailored to meet our customer's security needs. At Sword & Shield we understand what it takes to address security risks in the IT infrastructure and still achieve business goals.
Professional Service
Quality performance is our most important corporate asset. To ensure that quality performance is achieved during our security assessments, we rely on the integrity of each employee; insist that our program managers meet contractual requirements; place responsibility for quality with those who do the work; and ensure, through technical and management reviews and continual quality improvement, that we meet our commitments.
For more information on how Sword & Shield can help you in your Payment Card data security compliance efforts, contact: Josh Lohmann, jlohmann@sses.net or 1-865-777-5500 x520.
Our Markets
We service many markets, predominantly in these sectors:
Request Consultation
To speak to a member of our team, please fill out this request form.
