PCI Services
Mandated since June, 2001, the PCI (Payment Card Industry) Data Security
Standard requires all companies that handle credit card information to
comply with a broad set of technical and operational security
requirements. There is a lack of understanding among many companies
about how to adhere to these new requirements.
Non-compliant companies are liable to various sanctions including hefty
fines of up to USD $500,000 per security breach and restrictions on card
processing privileges. Recent state laws and FTC prosecutorial actions
are further increasing the pressure for companies to comply with the PCI
DSS. It has been confusing and difficult for organizations to undertake
the process of determining whether they are compliant with the PCI
standard and identifying what specific and practical steps they must
take to become compliant, if they are not.
"As a hybrid services firm, Halock is capable of addressing both the
strategic and technical security needs for PCI," says Terry Kurzynski,
Halock’s CEO.
"Not only does Halock have the Qualified Security Assessors (QSA) that
can interpret the PCI DSS, they also have the technical architects that
enabled us to design our networks and data centers to be secure and
compliant to the standard from the beginning. That is a real
differentiator for them and the reason we chose Halock Security Labs",
says Andrew Lauter, President of Accertify, a satisfied Halock customer.
Halock offers complete compliance and validation services for PCI. Most
engagements begin with
Counseling and Advisory Services
or a
Data Security Standard Gap Assessment.
Read our whitepaper on PCI Compliance Best
Practices