T3i :: PCI :: DSS Certification

PCI DSS CERTIFICATION

The PCI Data Security Standard has been mandated by major credit card providers, and is intended to protect cardholder data. To achieve PCI DSS compliance, all members, merchants and service providers must adhere to the Payment Card Industry (PCI) Data Security Standard, which offers a single approach to safeguarding sensitive data for all card brands. Failure to comply can mean revocation of processing privileges and or up to $500,000 in fines — per incident. T3i is a Qualified Security Assessor Company Certified by the Payment Card Industry Security Standards Council

OUR APPROACH TO PCI CERTIFICATION

Our PCI Certification engagement focuses on assessment, remediation, and certification of our client’s information and network security. T3i’s collaborative approach aligns the organizations individual business units with their technology needs according to the PCI Security Audit and Reporting Procedures. Outlined are key activities, deliverables, and milestones for ensuring the organizations PCI DSS compliance and certification.

Phase I: PCI DSS Project Definition and Scope

Executive view of all 12 core PCI DSS standards necessary for meeting compliance
Executive view of T3i’s PCI DSS offering, approach and deliverables
Definition of key personnel and project timeline and milestones

Phase II: PCI DSS Gap Analysis

Review and analysis of current policies, procedures, and initiatives throughout the organization
Analysis of debit/credit (i.e., payment) Transaction Environment
Identifying and analyzing all significant third party outsourcers and managed service providers used by the organization
Create Gap Analysis report

Phase III: PCI DSS Remediation, Consultation & Implementation

Joint review of the PCI DSS Gap Analysis findings and recommendations
Create remediation and implementation project plan
Organizational remediation of identified deficiencies or issues regarding PCI DSS compliance