Security Compliance Associates

The Payment Card Industry Data Security Standard (PCI DSS) Program is a required set of security standards that were created by the PCI Security Standards Council to offer merchants and service providers a complete, unified way of safeguarding credit card account data.

The PCI Data Security Standard requirements apply to all entities that store, process, and / or transmit cardholder data.

The requirements apply to all methods of credit card processing, from manual to computerized; the most comprehensive and demanding of which apply to e-commerce websites, and retail POS systems that process credit cards over the Internet.

SCA, with its foundation of providing comprehensive information security validation and regulated security program compliance services to our financial institution clients, recently introduced PCI-DSS compliance services, both in addition to our standard offerings and as a stand alone service. The PCI requirements continue to gain the attention of many in our market, yet confusion is abundant on what  to do or even if  they have to do anything about PCI.

Benefits of PCI

•    Reduce risk of breach and associated costs
•    Fines
•    Replacement cards
•    Cost of fraud
•    Reduce risk of reputational loss
•    Loss of ability to process
•    Loss of ability to accept payment cards
•    Improve negotiation position with processors

SCA offers following PCI Services:

• PCI DSS Gap Analysis / Readiness Assessment
• PCI DSS Remediation Support
• PCI DSS Assessment
• PCI Training
• PCI DSS Report on Compliance (ROC)
• QSA Consulting Services
• Network Testing
– Security Testing
– External Vulnerability Scan by ASV approved S/W
– Penetration Testing by ASV
– Internal Vulnerability Scans