Search
× Search
Menu
  1. Services

    Feature

    RB Advisory Video is Coming Soon.

    In the meantime please feel free to browse our full site and contact us if you have any questions about your businesses security needs.

    1. Cyber Risk Management
      1. Third Party Risk Management
      2. IT Security Audits
      3. Cyber Liability Insurance
      4. Incident Response
      5. Cyber for Small Business
      6. Cloud Management
      7. Change Management
      8. Configuration Management
    2. Security Compliance
      1. Governance, Risk, & Compliance
      2. Privacy Consultations
      3. Federal and State Regulations
    3. Cybersecurity
      1. Merger & Acquisition Due Diligence
      2. Penetration Testing
      3. CISO as a Service
  2. Industries
    1. Healthcare
    2. Government
    3. Financial Services
    4. Technology
    5. Retail
    6. Education
  3. Knowledge
  4. Events
  5. About
  6. Let's Talk
ServicesSecurity ComplianceGovernance, Risk, & CompliancePCI-DSS

WHAT IS PCI DSS COMPLIANCE?

PCI DSS stands for Payment Card Industry Data Security Standard and it was developed by the PCI Security Standards Council to reduce internet payment card fraud. Any organization processing cardholder data must comply with PCI DSS. Compliance can be authorized by the following methods; a qualified security assessor (QSA), an internal security assessor (ISA), or a self-assessment questionnaire (SAQ) for companies with less cardholder data.

WHY IS PCI DSS IMPORTANT?

Compliance with PCI DSS shows that the appropriate efforts are being made to protect cardholder data from common threats like cyber theft and fraudulent use. Cyber attacks have a great impact on the customers and to the business itself. Customers are directly affected and in addition your business can potentially suffer by losing revenues, customers, and brand loyalty and trust. Data breaches are a regular occurrence for small business who don’t have the proper security measures in place. It is increasingly become of greater importance to take responsibility for your customer’s data and make sure that data is secure.

HOW DO YOU BECOME PCI DSS COMPLIANT?

Compliance is measured by the merchant or service provider completing an audit of their cardholder data environment against the standard. There are standards expected of merchants and member service providers who store, process or transmit cardholder data. The following are the expected standards that help maintain PCI DSS compliance:

  • Build and maintain a secure IT network
  • Protect cardholder data
  • Maintain a vulnerability management program
  • Implement strong access control measures
  • Regularly monitor and test networks
  • Maintain an information security policy

The Payment Card Industry Data Security Standard (PCI DSS) applies to any company that accepts credit card payments. Qualified Security Assessor (QSA) will validate adherence to PCI-DSS compliance. Non-compliant fines can range from $5000 to $500,000 depending on the level, duration, and amount of data compromised. Companies can also lose customers trust, incur civil litigations from breached customers, fines for the company, and suspension of credit card acceptance by merchant credit card providers.

Contact RB Advisory

Terms Of UsePrivacy StatementCopyright 2018 by RB Advisory LLC
Back To Top