Visma Selects Trustwave for PCI DSS Compliance Validation

Norrtalje and Chicago, IL - 8 November 2007

Visma Retail (Visma), a provider of payment solutions for retail merchants in the Nordic market, has engaged Trustwave to validate the firm's compliance with the Payment Card Industry Data Security Standard (PCI DSS). Trustwave is a leading global provider of information security and compliance management solutions.

PCI DSS is the payment card industry security requirement for entities that process, transmit and/or store cardholder data, and has been endorsed by all the major card brands – Visa International, MasterCard Worldwide, Discover Network, American Express and JCB. Payment service provider compliance requirements are segmented into three levels based on the number of transactions processed and/or transmitted annually.

To meet stringent security requirements of credit card associations, Visma is submitting to a rigorous review of its information security policies and procedures and IT environment through the following Trustwave solutions:

• TrustKeeper®: A web-based comprehensive compliance management solution that includes the PCI DSS Self-Assessment Questionnaire, vulnerability scanning and recommended remediation actions.

• Network Penetration Testing or "ethical hacking" of the Visma IT environment

• Compliance Validation Services: Onsite review that the support necessary to complete the PCI DSS validation process, address any discovered vulnerabilities, and achieve and maintain compliance.

• Managed Security Services to manage and monitor Visma’s network environment, including firewall, VPN, IDS/IPS, anti-virus and Web protection and content management.

“Securing the cardholder data that we process is very important for our organization, and we’ve taken the appropriate steps by working towards PCI DSS compliance to safeguard any information that we handle as a third party supplier,” says Thomas Nordqvist, Managing Director, Visma Retail AB. “Trustwave’s extensive security technology portfolio facilitated our validation while their PCI DSS experience helped educate our organization.”

“Visma sets the standard among other payment industry service providers by validating compliance with the PCI DSS,” says Robert J. McCullen, chairman and CEO of Trustwave. “We’re proud to work with Visma to help them validate PCI DSS compliance and maintain that compliance on an on-going basis.”

Become a bobsguide member to access the following

1. Unrestricted access to bobsguide
2. Send a proposal request
3. Insights delivered daily to your inbox
4. Career development