New PCI DSS Toolkit Simplifies Compliance

Posted on
Share on Google+Share on LinkedInShare on FacebookShare on RedditTweet about this on TwitterEmail this to someone

<p><strong>Ely, England &mdash; Dec. 3</strong><br />Achieving compliance with the Payment Card Industry Data Security Standard (PCI DSS) is a critical business issue for all merchants that accept credit and debit cards. However, many remain unsure about the level of compliance required of their organization and how best to achieve this. To help explain and simplify the compliance process, IT Governance Limited has launched a new PCI DSS Toolkit.<br /><br />The PCI DSS must be met by all organizations (merchants) that accept credit and debit cards issued by the major credit card companies. It is a contractual obligation applied and enforced directly by the payment providers, and a failure by a merchant to comply can result in fines, restrictions or other costly repercussions.<br /><br />The standard requires merchants and member service providers to adopt various specific measures to ensure data security. These include building and maintaining a secure IT network, protecting cardholder data and maintaining a vulnerability management program and information security policy. The standard&rsquo;s compliance requirements are ranked in four levels, and the level of compliance required of a merchant is based upon the volume of payment card transactions it processes annually. <br /><br />The new PCI DSS Toolkit, which has been developed to work internationally, will support all organizations faced with PCI DSS compliance. It is particularly helpful to merchants required to comply with Levels 2 and 3 of the standard, for whom completion of a self-assessment questionnaire is a requirement, as well as Level 4 organizations. It contains a full set of templates for the mandatory PCI DSS policies, as well as a PCI slide presentation and full PCI DSS SAQ completion guidance, a cross-mapping to ISO27001/ISO27002 best practice and the manual of PCI DSS implementation guidance. It is available at www.itgovernance.co.uk/1337.<br /><br />Alan Calder, chief executive of IT Governance, said, &ldquo;There is simply no alternative but for merchants to comply with the Payment Card Industry Data Security Standard. However, organizations facing the standard for the first time are frequently bewildered by its requirements and uncertain of how to meet them. This new tool kit radically simplifies the compliance process and reduces it to a clear sequence of actions that can be performed efficiently, leaving merchants free to focus on the essential work of serving their customers.&rdquo; </p>

Share on Google+Share on LinkedInShare on FacebookShare on RedditTweet about this on TwitterEmail this to someone
cmadmin

ABOUT THE AUTHOR

Posted in Archive|

Comment:

Leave a comment

Your email address will not be published. Required fields are marked *

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>