Retail
Organizations that accept, process, transmit or store cardholder data have a responsibility to protect sensitive information under the Payment Card Industry (PCI) Data Security Standard (DSS). In addition to addressing and demonstrating compliance under PCI DSS, retailers potentially face a number of additional compliance requirements including the Gramm-Leach-Bliley Act (GLBA), the Sarbanes-Oxley Act (SOX), state privacy legislation and FTC rules governing fair trade practices among others. Without a comprehensive risk-based information security and controls program, the risk of loss is imminent.
TrustCC recognizes the challenges and competitive environment that retailers face. Our services are customized to deliver a risk based, practical approach to information security and compliance that meets your unique challenges. Our services will prepare your organization for PCI DSS certification.
Retail Services Include:
PCI DSS Security Preparedness
We will work with your IT, finance and other key internal organizational functions to provide an initial assessment, gap analysis, and recommendations to assist you in your compliance and security objectives.
Vulnerability and Penetration Testing
TrustCC’s expert services provide the confidence that your information assets are adequately safeguarded. Such services cost-effectively demonstrate diligence and control to examiners, executive management, and the Board.
Comprehensive Security Assessment
Vulnerability testing within your organization needs to be much more than penetration testing alone. Technical, administrative, and physical security controls are tested and analyzed to determine the overall effectiveness of your information security program.
Mainframe Security
We want to help your organization design methodologies that ensure the security of your mainframes and the applications running on them while meeting regulatory requirements.
Information Security Risk Assessment
Our standards-based IT risk assessment justifies administrative, technical and physical security control selection and prioritizes and establishes security plans and budgets.
Business Continuity Planning
TrustCC offers a proven methodology for business continuity planning based on industry standards and best practice, changing technology, and practical experience.
Incident Response
Preparing for a security incident is one of the most difficult tasks an IT manager can perform. Our team is trained and certified in incident handling and response. Let us help you prepare to respond to the unknown and minimize organizational impact.
Policy and Procedure Development
Policies and procedures are cornerstone for information security and risk management in any organization. TrustCC will identify appropriate and manageable policies, standards and procedures for your organization.
For more information on TrustCC's retail industry services contact Client Services.
TrustCC Security & Technology Seminar
Tom Schauer and TrustCC are hosting Where Trust is Key Seminars in Seattle, Tacoma and Spokane between March 30-April 1. More Information
Register Today!
Ask TrustCC
Have an IT Compliance Question? We'll get you an answer!
Subscribe to our Blog
Subscribe to our blog, Where Trust is Key!
About TrustCC
Our team of professionals is unsurpassed in their technical ability to evaluate systems security and exploit vulnerabilities. Our IT audit methodology is robust and closely aligned to bank and credit union regulatory guidance. When we make a recommendation you can be sure it is sound, operationally prudent and the right thing to do.
We believe in innovation. Our reports include benchmarking un-matched by any other firm. We deliver our findings and recommendations in a format that facilitates remediation of the issues. The support, checklists and training we provide ensures the value of our service far exceeds the fees paid.
Our devotion and focus has enabled us to quickly gain market dominance in our home State. Now we are expanding to serve community banks and credit unions throughout the United States.
Greatest Value. Best Service. Un-matched Technical Competency.