Acquiring banks and card issuers require merchants and service providers to meet the Payment Card Industry Data Security Standard (PCI DSS). We understand that PCI and compliance is not always a straight forward set of questions. Whether you are required to engage a Qualified Security Assessor (QSA) or are able to complete a Self-Assessment Questionnaire (SAQ) Confide can assist you in your PCI DSS compliance. PCI DSS helps provide a framework that will show your executive team and your customers that you have a commitment to protecting data and security.
We can help with:
- Scoping: Understand what the expected scope of your PCI DSS compliance is and how you may be able to limit which systems, people, and processes need to be included in your compliance.
- Gap analysis: Learn what your current state of compliance is and understand where you need to make improvements to reach PCI DSS compliance.
- Self-Assessment Questionnaire Assistance: If you need to complete a self-assessment questionnaire, we can assist you in everything from understanding the requirements to performing an independent assessment.
- Report on Compliance: If you store, process, or transmit a certain number of transactions per year, you may have to complete a report on compliance. The report on compliance is a more in-depth look at your environment than would typically be done in a SAQ and requires a more in-depth report on your current state of compliance.
Confide is the exclusive reseller of Quasar, a data discovery tool that you can use to find unprotected cardholder data in your environment. The key differentiator for Quasar is the human element. Every scan is reviewed by a person in order to minimise the likelihood of false positives, letting you spend time your time on real findings instead of chasing down false positives.
Confide can assist in the management of these scans and provide an independent resource through our certified vulnerability scanning specialists. We can help you implement and manage your scans using tools from Approved Scanning Vendors (ASV), and along with the standard reports, we provide a summarised monthly report that gives you results that you can act on fast.
Confide can offer a number of other security services to complement your internal security programme with a focus on security and privacy reviews to benchmark your organisation against best practices.