TrustCC, Information Security Consulting & Compliance

• Home
• Industries
  • Financial Services
  • Healthcare
  • Retail
  • Government
  • Service Providers
  • Public Companies
  • Higher Education
  • Professional Services
• Solutions & Services
  • IT Compliance
    • GLBA Compliance
    • HIPAA Compliance
    • SOX 404 Compliance
    • PCI DSS Security Preparedness
    • TG-3 PIN Security
  • IT Audit
    • General Controls Audit
    • FFIEC Audit
  • IT Security Testing
    • Comprehensive Security Assessment
    • Penetration Testing
    • Mainframe Security
  • IT Policy and Program
    • Information Security Risk Assessment
      
    • Incident Response
    • IT Security and Compliance Training
    • Business Continuity Planning
    • Policy and Procedure Development
• Resources
  • Articles
  • Checklists and Samples
  • Presentation Materials
  • Case Studies
    • Penetration Testing Case Study
    • Social Engineering and Phishing Case Study
    • Outsourced IT Audit Case Study
    • Policy Development Case Study
  • Partners
  • Useful Links
• Company Info
  • The TrustCC Advantage
  • Management Team
  • Security/Audit Vendor Due Diligence
  • TrustCC's Internal Controls
  • Client Demographics
  • Code of Ethics
  • Job Openings
  • Contact Us
• News & Events
  • News & Press
  • Seminars and Training

PCI DSS Security Preparedness

Information security controls at service providers, merchants and retailers have come under increased scrutiny in light of recent high profile compromises of customer data. Such compromises are requiring these organizations to examine existing controls and business processes in order to protect reputation, consumer confidence, and competitive advantage. Additionally, compliance to the Payment Card Industry Data Security Standard presents a financial risk to an organization including risk of non-compliance that may be realized through fines, higher interchange rates or potential legal action against the organization.

At TrustCC, our goal is to assist companies in the credit card industry to comply with the Payment Card Industry Data Security Standards, preparing them for certification and minimizing the chance of compromise and related fines. TrustCC tests against PCI Data Security Standards’ 12 major requirements for validation and certification within our PCI Security Preparedness Service.

Designed For:

• Exam Preparation: Organizations that want to evaluate overall compliance with the PCI Security Standards Council in preparation for an audit by a QSA Company.
• Board Reporting: Organizations that want to provide their Board (or Audit Committee) with a representation of the current state of information security and regulatory compliance.

What We Typically Provide:

• IT Security and Vulnerability Testing: A series of procedures designed to identify vulnerability and demonstrate threats.
• Remediation: TrustCC will work directly with your organization to resolve any medium or high risk vulnerabilities identified during a vulnerability scan.
• IT Audit Procedures: TrustCC will use PCI Security Standards Council’s pre-defined audit procedures to measure compliance and provide recommendations where appropriate.
• Comparative Analysis: TrustCC will provide you with a general comparison to other organizations with similar regulatory requirements so you know how you may be "measured" when examined by your regulators.

How You Benefit:

• Know Your Compliance Profile: You’ll know before a QSA audit where your company stands and have a chance to avoid costly fines.
• Demonstrate Your Controls: You’ll know that your security controls are implemented correctly, operating as intended and producing their desired outcome.
• Avoid A Lawsuit: You will have confidence that your company will have put controls in place to avoid a breach of your customer’s information.