CyberSecurity & PCI Readiness Compliance for Transit

Picture

CyberSecurity is the protection of information systems from theft or damage to the hardware, the software, and to the information on them, as well as from disruption or misdirection of the services they provide. We help manage the risk and security of business IT assets. As your partner we work with you to understand the culture and risk appetite within the business to make sure that your business continues to operate within acceptable measures.

We understand that elimination of all risk is not possible in business and the costs associated with security is based on value. We will work to ensure that your business can operate both for service delivery and financials. While compliance is a business decision, we are qualified to help you become and remain compliant. Our primary focus is on Payment Card Industry Compliance.

PCI Readiness to Compliance
The Payment Card Industry Data Security Standard (PCI DSS) is a set of requirements designed to ensure that companies that process, store or transmit credit card information maintain a secure environment.  

The Payment Card Industry Security Standards Council (PCI SSC) was launched on September 7, 2006 to manage the ongoing evolution of the Payment Card Industry (PCI) security standards with focus on improving payment account security throughout the transaction process.  The PCI DSS is administered and managed by the PCI SSC (www.pcisecuritystandards.org), an independent body that was created by the major payment card brands (Visa, MasterCard, American Express, Discover and JCB.).

Becoming compliant and remaining compliant can be expensive and difficult if your main business is not credit card security. There are many areas to navigate with assessors, software and hardware vendors, banks and internal management.

We are here to help you with PCI compliance avoiding fines and ensuring your data is secure.
    Cybersecurity Services
  • Program / Project Management
  • Daily Operations and Monitoring
  • Vulnerability assessment  
  • Patching assessment and monitoring
  • SEIM/FIM Operations
  • EOL Assessments
  • Network Segmentation
  • Access Control Operations / Policies
  • Remediation Operations for Security Issues
  • Business As Usual Compliance Management
  • Vendor Management 
  • Technology Security Assessments
  • Compliance Re-Certification
  • EMV Operations and Monitoring
  • ​Merchant Acquirer Operations
  • Database Assessment
  • Business Continuity / Disaster Recovery
  • Policy and Procedure Development
  • IT Consulting and Implementation
  PCI Readiness & Compliance Services
  • Getting your transit system to PCI compliance
  • PCI compliance planning
  • QSA vendor selection and management
  • GAP remediation guidance and management
  • PCI subject matter expertise
  • Key Management expertise
  • Technology Security Assessments
  • Card Data Environment Definition
  • PCI Assessment management on your behalf
  • SAQ guidance and support
  • Compliance Portal Services
  • Getting Complaint and Staying Compliant services
  • PCI Reporting and Operations Monitoring
  • Policy and Procedure Development
  • PCI Training for compliance
  • Payment Application Software Vendor Management
  • Merchant Acquirer Management SME services
  • RFP and contract reviews for PCI compliance
  • PCI support when dealing with your Fare Collection Vendor

contact us today for results tomorrow!