Service detail
- Conduct a formal annual review of the payment application environment, processes and personnel. Work performed includes:
- An on-site assessment with interviews as well as a documented review of the network technology configuration sampling with respect to PCI compliance.
- Complete a PA-DSS report detailing all compliant items, data flows, interview candidates, and other required information
- Review and document any compliance changes to environment
- Submit completed PA-DSS Report on Validation (RoV) to the PCI Security Standards Council (SSC).
- IBM is certified as a Payment Application Qualified Security Assessor (PA-QSA).
Highlights
- Satisfies annual compliance requirements for payment application providers against the requirements of the Payment Application Data Security Standard (PA-DSS)
- Enables business-aligned security controls to help manage regulatory compliance and look for compensating controls wherever possible
- Helps reduce potential costs and complexity of security of non-compliance by providing guidance of the PCI latest requirements
