ECSC Limited | PCI DSS

vendor independent information security specialists

“Thank you for all you help and encouragement. We wouldn't have made such swift progress to certification without your support.”

Information Security Manager, Building Society

“Thank you for the fantastic response to our emergency this morning . . . to have an engineer out within two hours is quite astonishing!”

Business Support Manager, Legal Practice

“ECSC were by far the best company. . . worth every penny”

IT Manager, Debt Recovery Agency

“We were trying you out 'blind' against another company, we found your work and report of the most value, and would like to congratulate XX on a job well done.”

Information Security Officer, University

“What impressed the management team was your ability to translate very technical issues into a language understandable by non experts and explain the associated risks”

CTO, Financial Trading Systems

“I have been using ECSC for 7 years now and not had any issues in that time, perfect service”

Microsoft Operations Manager, Systems Integrators

“We asked ECSC to help and now have a managed solution. . . we are now happy to talk about security with our clients and recommend ECSC”

Director, Database Marketing

“Don't be fooled by the lack of content on their web site, they are very discreet about what they do. . . extremely professional”

Group Information Systems Officer, Security Services

“I just wanted to say thank you, to both of you, for the professional standard of your work last week”

IT Manager, Secure Printer

“I would highly recommend ECSC for your company's network review. . . were by far the best company”

IT Manager, Credit Management Agency

“Try the company we have been using as our security consultants. . . not only helped us with the content but actually performed the training for us”

CTO, IT Security Services

consultancy services

iso 27001

pci dss

testing

code audit

social engineering

incident response

counter surveillance

bs25999

Standard:
a required level of quality or attainment

The Payment Card Industry (PCI) Data Security Standard (DSS) is the mandatory standard for anyone storing or processing credit card data. This brings not only merchants, but a wide range of service providers, within the scope of the standard.

Deliberately, the standard is detailed in its requirements, broad in its technical scope, and requires a step change in many organisations' approach to the way they manage information security.

To support the standard, the card issuing banks have developed a range of penalties, and have applied them where breaches occur. They also take into account your level of compliance when handing down penalties.

There are sound strategies for meeting your obligations without applying excessive resources, and common mistakes that can be avoided with the right approach.

As Qualified Security Assessors (QSAs), ECSC can help you understand the standard, assist you in meeting its requirements, and if required, conduct the on-site validation.

See Consultancy Services I See Intelligence

Call +44 (0) 1274 736223 or email info@ecsc.co.uk today I Copyright © ECSC Ltd 2010