PCI Process Overview
Our PCI Compliance and security assessment process minimizes the impact on business operations by providing a logical, structured approach that emphasizes productivity and maximizes ROI. A brief example of how AlertSite, with its partner Sunera, conducts assessments:
- Define the scope of work to be performed during the assessment.
- Conduct a pre-assessment meeting to establish expectations, identify the key players in the assessment process and provide guidance.
- Receive and review off-site all relevant policies, procedures and technical documentation.
- Conduct an external vulnerability assessment prior to arriving on-site.
- Arrive on-site and perform the data security assessment process as detailed in the initial scope of work.
- Provide an initial statement of findings to identify deficiencies and provide recommendations so remediation efforts may begin as quickly as possible.
- Generate a Report on Compliance.
- Conduct quarterly and/or on-demand network scans to fulfill ongoing PCI compliance requirements.
All members of our information security teams are Certified Information Systems Security Professionals (CISSP) and Qualified Data Security Professionals (QDSP). Each QDSP has successfully met Visa USA's requirements to provide PCI data security assessment services and issue reports on compliance.
|
 |
|
