What Is PCI Compliance?The Payment Card Industry Data Security Standard (PCI DSS) has set regulations based on the amount of credit card transactions that a company processes that it must abide by. PCI Regulations are set forth for customer, merchant as well as the credit card company’s protection. The PCI compliance lists the 12 policies below followed by Self-Assessment Questionnaire that companies need to comply with to be compliant. LionCageDefender.com not only tests your server and computers for vulnerable weak spots but also checks your Microsoft Windows environment for Firewall updates, Anti Virus updates as well as the status of actual Windows updates. Hackers across the globe are seeking your credit card data and it is your responsibility to your clients to ensure that their data is stored and hosted and utilized in a secure environment. Regardless of PCI, securing your client’s credit card data is your responsibility. Your clients trust you with their information; a hack and or release of their private information can not only jeopardize your business and reputation but can open you up to potential fines and penalties. Our solution assists you in finding your vulnerabilities and alerting you of computer/server problems before a hacker does! If your merchant or software requires a custom scan or schedule please feel free to contact us so that we can assist you accordingly.
The 12 Step PCI Compliance Program:
Maintain a Secure Environment
- 1. Setup & Maintain a firewall.
- 2. Configure strong passwords, do not use defaults.
Test and scan for vulnerabilities
- 5. Ensure Anti Virus & Malware is up to date.
- 6. Develop & maintain a secure environment.
Protect Credit Card Data
- 7. Restrict access to cardholder data by business need-to-know.
- 8. Give unique access to each user with access to data.
- 9. Maintain physical access control to store credit card data.
Protect Credit Card Data
- 3. Protect data.
- 4. Encrypt data locally and when transmitting.
Regularly test & monitor networks
- 10. Track and monitor all access to network resources and cardholder data.
- 11. Regularly test security systems and processes.
- 12. Maintain a policy that addresses information security.
The PCI Compliance Board has setup the following 4 levels:Merchant Level Description 1 Any merchant — regardless of acceptance channel — processing over 6M Visa transactions per year. Any merchant that Visa, at its sole discretion, determines should meet the Level 1 merchant requirements to minimize risk to the Visa system. 2 Any merchant — regardless of acceptance channel — processing 1M to 6M Visa transactions per year. 3 Any merchant processing 20,000 to 1M Visa e-commerce transactions per year. 4 Any merchant processing fewer than 20,000 Visa e-commerce transactions per year, and all other merchants — regardless of acceptance channel — processing up to 1M Visa transactions per year LionCageDefender.com automated penetration testing tools, IP & IP GeoTagging, Website & Application usage logging, and security monitoring are essential tool in assisting your company in gaining PCI compliance. You can download the self-assessment questionnaire by visiting:
We work hard to offer the best preemptive security solutions available and our American tech support team is here to assist you when needed. If you have any questions please feel free to contact us!
LionCageDefender.com provides PCIDSS ASV Certified scans via an authorized ASV certified partner. Signup today or contact us for more information regarding our Certified PCI scan. If you electronically store cardholder information or if your processing systems have any internet connectivity, a quarterly scan by an approved scanning vendor may be required. PCI Certification is a two step process A. Filling out the correct SAQ questioner B. Passing a vulnerability scan quarterly. Our dedicated PCI compliance team is waiting to assist you in getting compliant. Don't risk your clients data, don't risk getting penalized!