IBM Corp. today announced a new program to help customers achieve compliance with the Payment Card Industry Data Security Standard.
IBM Corp. today announced a new program to help customers achieve compliance with the Payment Card Industry Data Security Standard. The program is designed to take retailers through the entire PCI compliance process, from assessment to compliance to certification, helping them meet all 12 PCI requirements for safeguarding customer payment card data.
The PCI standard applies to any company that processes, transits or stores credit card information. Retailers failing to comply with the standard face stiff fines and could lose card-acceptance privileges.
The IBM PCI solution includes consulting services for compliance gap analysis, remediation, validation, ongoing testing and reporting, as well as a range of products that help organizations with each aspect of security planning, management and compliance reporting, IBM says. IBM’s five-phase program includes assessment of data security; development of security strategy, policies, standards and procedures and incident response planning; deployment of security software and hardware; security monitoring and management software solutions; and security awareness education.
“As many merchants have learned in recent years, meeting some or even most of the mandated PCI requirements is no longer sufficient,” says Kristin Lovejoy, director of strategy for governance and risk management, IBM. As a global leader in security technology and consulting services, IBM has the knowledge and expertise to provide a comprehensive solution for helping merchants comply with the PCI standard.”