Vernance is a PCI Council-approved Qualified Security Assessor.
The Payment Card Industry (PCI) Data Security Standards (DSS) is the regulatory body for all the entities that are involved in processing, storing and transmitting credit card information. The requirements of PCI-DSS apply to all merchants, including:
- Retail (brick-and-mortar)
- Mail/telephone order
- State and Local Governments
All major credit card associations such as Visa, MasterCard, American Express, Discover, Diners Club and JCB all endorse, and require the unified PCI Data Security Standards.
Vernance can assess the processes and infrastructure deployment supporting credit card transactions. In addition to assessing your compliance posture we can manage the remediation project using your teams. We have extensive experience in managing compliance remediation projects ensuring that at the end of the project your will achieve the desired compliance level and your teams will have a sound understanding of all requirements as well as how to maintain the compliance program. More about our project management methodology in Project management Vernance will coordinate the Project Management, solution design and will provide guidance, suggestions and technical expertise where this is not available internally. We will ensure the project will be completed in time and within the budget while meeting your company goals.
Level 1 and 2
A few Level 2 Merchants received the surprise that they had to get assessed by QSA’s. Whether this is your first audit, are optimizing your environment or are addressing gaps, we bring our years of experience not only as QSA’s but as GRC and security professionals.
Level 3 and 4
Aside from having a QSA validate the answers, Level 3 and 4 are still subject to the same compliance pressures as larger volume merchants. Vernance can help fill the Self-Assessment Questionnaire (SAQ) and help address the people, process and technology gaps that may be in the way of achieving compliance.