PCI DSS is the payment card industry security requirement for entities that process, transmit and/or store cardholder data, and has been endorsed by all the major card brands â Visa International, MasterCard Worldwide, Discover Network, American Express and JCB. Payment service provider compliance requirements are segmented into three levels based on the number of transactions processed and/or transmitted annually.
To meet stringent security requirements of credit card associations, Visma is submitting to a rigorous review of its information security policies and procedures and IT environment through the following Trustwave solutions:
â¢ TrustKeeperÂ®: A web-based comprehensive compliance management solution that includes the PCI DSS Self-Assessment Questionnaire, vulnerability scanning and recommended remediation actions.
â¢ Network Penetration Testing or "ethical hacking" of the Visma IT environment
â¢ Compliance Validation Services: Onsite review that the support necessary to complete the PCI DSS validation process, address any discovered vulnerabilities, and achieve and maintain compliance.
â¢ Managed Security Services to manage and monitor Vismaâs network environment, including firewall, VPN, IDS/IPS, anti-virus and Web protection and content management.
âSecuring the cardholder data that we process is very important for our organization, and weâve taken the appropriate steps by working towards PCI DSS compliance to safeguard any information that we handle as a third party supplier,â says Thomas Nordqvist, Managing Director, Visma Retail AB. âTrustwaveâs extensive security technology portfolio facilitated our validation while their PCI DSS experience helped educate our organization.â
âVisma sets the standard among other payment industry service providers by validating compliance with the PCI DSS,â says Robert J. McCullen, chairman and CEO of Trustwave. âWeâre proud to work with Visma to help them validate PCI DSS compliance and maintain that compliance on an on-going basis.â