PCI DSS Compliance

Visa USA's Cardholder Information Security Program (CISP) mandates that all members, merchants and service providers validate compliance to PCI Data Security Standards. As a Qualified Security Assessor (QSA), acknowledged by the PCI Security Standards Organization, Tevora has the expertise to assess compliance and to help you remediate non-compliance in the most efficient and cost-effective way.

What is PCI DSS?

The Payment Card Industry Data Security Standard (PCI DSS) is a multifaceted security standard that includes requirements for security management, policies, procedures, network architecture, software design and other critical protective measures. The PCI DSS, a set of comprehensive requirements for enhancing payment account data security, was developed by the founding payment brands of the PCI Security Standards Council, including American Express, Discover Financial Services, JCB, MasterCard Worldwide and Visa International, to help facilitate the broad adoption of consistent data security measures on a global basis.

The core of the PCI DSS is a group of principles and accompanying requirements, around which the specific elements of the DSS are organized:

• Build and Maintain a Secure Network
• Protect Cardholder Data
• Maintain a Vulnerability Management Program
• Implement Strong Access Control Measures
• Regularly Monitor and Test Networks
• Maintain an Information Security Policy

What does compliance mean to you?

Compliance validation must be provided by merchants and service providers as a means of ensuring to the card brands and your acquirer that you have adhered to the PCI Data Security Standards.

Validation requirements vary based on the levels defined by the card brands and can range from self assessments questionnaires to yearly submission of a signed Recommendation of Compliance (ROC) by a Qualified Security Assessor (QSA)in good standing as acknowledged by the PCI Security Standards Council.

Tevora as a QSA:

As a Qualified Security Assessor in good standing and acknowledged by the PCI Security Standards Council, Tevora Business Solutions can be your partner of choice when looking for help in achieving and demonstrating compliance.

Working closely with many Fortune 1000 companies around the country, Tevora has the expertise to move decisively and thoroughly analyze, remediate, and assess adherence to the PCI standards in a cost effective manner.