PCI Compliance

Payment Card Industry Compliance has become one of the watch words of Information Security today. PCI Data Security Standard is developed by PCI Security Standard Council, a group of top card issuers in the world including Amex, JCB, VISA, Discover and MasterCard. The aims of the standard include:

Reducing online credit card fraud.

Ensuring that organizations accepting online payments are more aware (and accountable) for the security of their operations.

Reducing losses for card issuers arising from fraud.

Protecting the privacy of consumers submitting card details online.


Any entity that stores, process and/ or transmits cardholders' data, it is mandatory to comply with PCI DSS. Entities include but not limited to:

Merchants

Acquirers

Service Providers

Trusted Third Parties


SISA Compliance Program

PCI Compliance Services are among the core competencies of SISA. As Asia's first PCI QSA & ASV (Approved Scanning Vendor) organization our unrelenting efforts to provide impeccable services to our clients has led us in making of many 'firsts' PCI Compliant in the industry, few are:

The first mobile payment platform to get PCI DSS Compliance certification in the world.

The first Software Development Company to get PCI DSS Compliant in the world.

The first PCI DSS compliant BPO.

The first Bank in Middle East to be certified on PCI DSS.




PCI Compliance Services

Our PCI compliance services include:

Onsite QSA Audits

Onsite PCI Security Assessment Services

Scanning Service (PCI SSC approved Scanning Vendors)

Other PCI Exercises:

Pre Audit checks and Technical Auditing

Penetration Testing

Application Security testing

Secure Code Reviews

24 x 7 forensic & incident management support

Consultation on payment process and architectural design.

Education & Assessment Preparation

Compliance Advisory & Support

Internal Vulnerable Scanning


Positives of SISA

Proven track record in PCI Compliance Certification Services.

Our Consultants are subject matter experts who are invited speakers in International Forums conducted by VISA, Microsoft, OWASP, ISACA, CIA, CSI, CEBIT, STPI, IT.IN, etc.

Structured approach to expedite the auditing process for enabling our clients to get PCI Compliance Certification as quickly and painlessly as possible - therefore reducing the cost of associated with PCI compliance.

Innovation - SISA has certified the first BPO in the world, the first Software Development Company in the world, the first m-commerce in the world, the first Bank in the Middle East, the first Processor in the Middle East, the first Merchant in Asia Pacific Region, etc.

Time- SISA has the track record of completing projects on time, and supporting organizations throughout the project lifecycle.

Importantly, SISA is a vendor-neutral QSA and therefore does not resell add-on IT security products. Our unbiased approach ensures that we can supply our clients with the optimum solutions for any PCI related security issues that might arise.

Vast pool of experienced security consultants with certificates like CISA, CISSP, CEH, PCI QSA, ISO 27001 LA along with technology certifications on Microsoft and Java.

Experience - We have worked on PCI projects in every vertical of its applicability be it the Merchants, Payment Gateways, Acquirers, Issuers, M-Commerce Providers, Third Party Processors, Software Development Companies, Business Process Outsourcing Companies or Card Personalization Companies.