PCI Planning, Readiness & Compliance

PCI Planning, Readiness & Compliance
PCI Planning, Readiness & Compliance

Body

Any organization that collects or processes payment card information must comply with the Payment Card Industry Data Security Standard (PCI DSS).  Although compliance has improved in recent years there are still a large number of organizations who are not compliant.  In addition to significant fines, companies can be barred from processing credit card transactions and may pay higher processing fees.  In the event of a serious security breach, fines of up to $500,000 can be levied for each instance of non-compliance – not to mention damage to your reputation and probable loss of customers.  Protiviti is a PCI Security Standards Council approved global provider for the following programs:

  • Qualified Security Assessors (QSA)
  • Payment Application QSAs (PA-QSA)
  • Approved Scanning Vendors (ASV)

 

Protiviti PCI Planning, Readiness and Compliance professionals will work with you to plan and prepare for certification as well as help you remediate issues found in early assessments.  We will help you manage your risk by understanding what private data is collected and where it is stored, train employees about company policy for handling private data, integrate a crisis–management process, and implement a privacy risk management process or office.  We will offer options for compensating controls and limiting scope as well as provide recommendations to mitigate common pitfalls.  Finally, we can perform certification with a Report on Compliance (ROC).  We can also provide:

  • Annual onsite audits
  • Quarterly vulnerability scans
  • Annual penetration testing
  • Remediation
  • Visa PIN Security reviews