Data integrity and protection assured for New Zealand credit card transaction.
(1888PressRelease) July 14, 2009 - World-leading IT Security research and development company, Security-Assessment.com, has validated Payment Card Industry (PCI) compliance for New Zealand internet transaction company Direct Payment Solutions. Security-Assessment.com is a wholly owned subsidiary of Datacraft and is based in New Zealand.
New industry regulations require all organisations which store, transmit or process credit cards, to comply with PCI Data Security Standards (PCI DSS). Direct Payment Solutions (DPS) is one of the first companies in the region to address these new standards, giving them significant advantage over their competitors in demonstrating their compliance to credit card users.
Every day, thousands of New Zealand companies trust DPS to process their electronic payments. It became necessary for the company to obtain PCI DSS compliance as handling credit card data is so integral to its day-to-day operations. The PCI DSS was set up to provide organisations with a minimum set of prescribed controls to proactively protect customer account data and prevent its disclosure to malicious third parties. Only Qualified Security Assessors (QSAs) can conduct the independent validations. As a QSA, Security-Assessment.com is among a handful of companies in New Zealand qualified to perform such onsite reviews.
“We are very proud of our PCI compliant status,” said Jonathan Boucher, Infrastructure Manager of DPS. “The professionalism and technical expertise shown by Security-Assessment.com was invaluable throughout the evaluation. The validation of our PCI compliance demonstrates to our customers that we take the responsibility of being a trusted processor very seriously.”
Security-Assessment.com demonstrated a thorough, informative and confident approach to the task. Dean Carter, a qualified PCI QSA consultant from Security-Assessment.com, with in-depth knowledge of both the technical and business aspects of the assessment, established a step-by-step process for achieving the set deliverables for each phase. Constant high-level communication ensured that all the DPS employees involved in the project were kept abreast of the progress. This meant they could address any issues as they arose. The QSA was able to offer invaluable business recommendations to further strengthen DPS’s rigorous security posture, recognising that PCI DSS compliance is an ongoing process of achieving, maintaining and validating compliance status.
“Achieving compliance proved to be a complex issue that was not centered solely around technical improvements,” said Boucher. “Security-Assessment.com was able to expertly advise us on the steps we needed to take in order to align people, policy and process along with the technology to fulfill the strict requirements.”
Security-Assessment.com‘s PCI advisory experience ensured the project was painless for DPS to implement. “Our goal was to ensure that DPS were not only maintaining compliance, but also that their environment was appropriately secure,” said Carter. “DPS were great to work with; they had the professionalism and experience to put the right people in place to assist us in bringing this project to a swift and successful conclusion.”
About Security-Assessment.com
Security-Assessment.com provides independent security advisory, assessment and assurance services to help organisations establish and maintain a secure environment. Security-Assessment.com h implemented a number of effective enterprise security strategies which have enabled clients to address their security and compliance requirements. Security-Assessment.com is a wholly owned subsidiary of Datacraft.
More information can be found at www.security-assessment.com
About Datacraft
Datacraft is a wholly owned subsidiary of Dimension Data plc (LSE:DDT), a US$4.5 billion leading global IT solutions and services provider. Datacraft operates in over 50 offices across 13 Asia Pacific countries. We help clients plan, build, support, manage, improve and innovate their IT infrastructures. Datacraft combines an expertise in networking, converged communications, security, data centre, storage, converged communications, Microsoft solutions and contact centre technologies, with advanced skills in consulting, integration, training and managed services to craft IT solutions for businesses.