Retail
Organizations that accept, process, transmit or store cardholder data have a responsibility to protect sensitive information under the Payment Card Industry (PCI) Data Security Standard (DSS). In addition to addressing and demonstrating compliance under PCI DSS, retailers potentially face a number of additional compliance requirements including the Gramm-Leach-Bliley Act (GLBA), the Sarbanes-Oxley Act (SOX), state privacy legislation and FTC rules governing fair trade practices among others. Without a comprehensive risk-based information security and controls program, the risk of loss is imminent.
TrustCC recognizes the challenges and competitive environment that retailers face. Our services are customized to deliver a risk based, practical approach to information security and compliance that meets your unique challenges. Our services will prepare your organization for PCI DSS certification.
Retail Services Include:
PCI DSS Security Preparedness
We will work with your IT, finance and other key internal organizational functions to provide an initial assessment, gap analysis, and recommendations to assist you in your compliance and security objectives.
Vulnerability and Penetration Testing
TrustCC’s expert services provide the confidence that your information assets are adequately safeguarded. Such services cost-effectively demonstrate diligence and control to examiners, executive management, and the Board.
Comprehensive Security Assessment
Vulnerability testing within your organization needs to be much more than penetration testing alone. Technical, administrative, and physical security controls are tested and analyzed to determine the overall effectiveness of your information security program.
Mainframe Security
We want to help your organization design methodologies that ensure the security of your mainframes and the applications running on them while meeting regulatory requirements.
Information Security Risk Assessment
Our standards-based IT risk assessment justifies administrative, technical and physical security control selection and prioritizes and establishes security plans and budgets.
Business Continuity Planning
TrustCC offers a proven methodology for business continuity planning based on industry standards and best practice, changing technology, and practical experience.
Incident Response
Preparing for a security incident is one of the most difficult tasks an IT manager can perform. Our team is trained and certified in incident handling and response. Let us help you prepare to respond to the unknown and minimize organizational impact.
Policy and Procedure Development
Policies and procedures are cornerstone for information security and risk management in any organization. TrustCC will identify appropriate and manageable policies, standards and procedures for your organization.
For more information on TrustCC's retail industry services contact Client Services.
Recent Quote
“TrustCC's professionalism, knowledge, and effective communication style are a welcome change compared to other firms. Their recommendations allowed us to easily implement the necessary control changes to not only pass examination, but ensure the proper protection of both the Bank’s and our Customer’s information." – Eric Jensen Chief Financial Officer of Fortune Bank; December 2007
About TrustCC
TrustCC’s team of professionals is unsurpassed in hands-on experience and regulatory knowledge. We focus our attention on detail, insightful reporting, and our customers’ needs.
TrustCC is known for its systems, security, and regulatory expertise, customer service and independence.
We are confident that our services will exceed your expectations.
Locations Served
TrustCC started in the Seattle/Tacoma area. Today TrustCC serves clients throughout the United States and elsewhere!