ControlCase IT Governance, Risk and Compliance (GRC) software, Compliance as a Service (CAAS) and Certifications, has formed an independent and standalone division to perform ISO 27001 certifications. ControlCase was recently awarded the ISO accreditation from the Dutch Accreditation Council, http://www.rva.nl, (RvA). With this accreditation, ControlCase can now offer clients with a compelling and more cost effective offering that combines expertise in PCI Data Security Standard (PCI DSS) compliance and ISO 27001 certification. The independent team of experts in the newly formed ISO division can now offer services for Training, Initial Assessments, Certification Audits and Surveillance Audits for Certifications as per ISO 27001.
The latest PCI DSS 2.0 standard, based on extensive inputs from the PCI Security Standard Council’s global stakeholders, is designed to provide greater clarity and flexibility to facilitate improved understanding of the requirements and eased implementation for merchants. InterGlobe Technologies (IGT), the leading provider of integrated IT- BPO solutions to the travel and hospitality industry, has announced its successful PCI DSS 2.0 certification as perhaps the first Travel BPO organization by leading PCI DSS QSAC, ControlCase. The company has effectively met the newest version of the Payment Card Industry Data Security Standard (PCI DSS) compliance requirements.
Helping small and medium sized businesses ensure adequate defenses are in place, Coalfire Systems released its “Navis PCI Complete” online, fixed-price service that bundles together all the testing, documentation and reporting tools needed to achieve PCI Compliance with PCI DSS. The “Navis PCI Complete” lends Coalfire tools and expertise in an online toolkit and support program that provides small and medium-sized merchants with the education, tools, recommendations and assistance to ensure PCI DSS compliance. This includes assistance documenting card-processing technologies and networks; help identifying compliance gaps, selecting controls and prioritizing; external vulnerability scans; internal vulnerability scans; tools to document, print and submit a SAQ to a merchant’s bank or processor; and $50,000 of data breach insurance for each registered Merchant ID.
Coalfire Systems (Coalfire) released its “Navis PCI Complete” online, fixed-price service that bundles together all the testing, documentation and reporting tools needed to achieve PCI DSS Compliance. Encouraging merchants to vigilantly protect against continuously-evolving cyber threats, “Navis PCI Complete” packages its tools and expertise into an online toolkit and support program that provides small and medium-sized merchants with the education, tools, recommendations and assistance they need to de-mystify the PCI DSS and protect their businesses. It is specifically configured for merchants who process fewer than six million credit card transactions annually (PCI Merchant Level 2, 3 or 4) and are seeking to complete an annual test plan to validate PCI compliance. Included is assistance documenting card-processing; technologies and networks, identifying compliance gaps, selecting controls and prioritizing; external vulnerability scans; and internal vulnerability scans.
Information security provider Solutionary has been recertified by the Payment
Card Industry (PCI) Security Standards Council as an Approved PCI Scanning Vendor (ASV) and as a
Qualified Security Assessor Company (QSAC). A longtime
leader in the payments industry, Solutionary has been both a QSAC and an
ASV for six consecutive years. Compliance and security solutions available today from Solutionary include
ActiveGuard Managed Security Services; PCI Self-Service Tools and Security & Compliance Consulting Services.
Solutionary is an information security company that delivers a wide
range of managed security solutions and professional services to reduce
risk, increase security and ensure compliance for medium-to-large
businesses. The company’s services are based on the ActiveGuard platform and next
generation security intelligence, offering true security and compliance
SaaS SecureWorks will continue to help organizations meet the Data Security Standard (DSS) version 1.2. SecureWorks is a Qualified Security Assessor Company and also an
Approved Scanning Vendor for PCI which enables SecureWorks to provide Reports on Compliance and to provide external and/or internal vulnerability scanning services required as part of the DSS version 1.2 specification. SecureWorks provides firewall and other device reporting, monitoring and management services that can ensure that technologies are appropriately
placed to segment the network to protect cardholder data from internet and internal threats. Our workflow and reporting provide an audit trail that firewall policies are reviewed as needed and no less often than required by PCI. PCI DSS version 1.2 changed the requirement to review firewall policies from every quarter to every six months.
MA-based Security Innovation has been certified as a “Qualified Security Assessor Company” for the “Payment Card Industry Data Security Standard.” To become a QSAC, Security Innovation sent employees to be trained and certified as Qualified Security Assessors (QSA) by the PCI Security Standards Council. Security Innovation can now conduct PCI assessments, as well as help clients prepare for assessments and address any problematic areas encountered. Security Innovation is an independent application security firm that offers education, risk assessment and risk mitigation solutions.