Twitter

PCI Compliance Services

Every entity that stores, processes or transmits cardholder data must comply with the Payment Card Industry Data Security Standard (PCI DSS). This standard is overseen by the PCI Security Standards Council and focuses on information security policy, cardholder data security, access control, network security and monitoring, and organizational vulnerability management.

Certain organizations are required to undergo annual onsite validation by a Qualified Security Assessor (QSA) depending on the nature of the organization’s services and annual transaction volume. SAS 70 Solutions is an accredited QSA and provides annual onsite validation services, as well as other PCI advisory services.

Annual Onsite Validation

As a Qualified Security Assessor (QSA), SAS 70 Solutions provides onsite validation of the PCI DSS per the governing requirements of the PCI Standards Council.

PCI Scoping and Readiness Reviews

For organizations trying to determine the scope of their cardholder environment, evaluate controls prior to the onsite validation, or needing to make improvements to become compliant, SAS 70 Solutions provides the following services:

  • Cardholder Environment Scoping – An assessment which helps client determine the where cardholder data may reside in their network.
  • Readiness Review - Performs a high-level review to identify controls that may require improvement prior to the onsite validation.

For more information about PCI compliance please click here.

Back to Top