Enhancing payment security
Aevi recently partnered with the PCI Security Standards Council to further secure payment data worldwide.
We sat down with Security Officer, Michal M Kamenisty to discuss what this means and the benefits it can bring to our security program.
Firstly, what is the PCI SSC?
The PCI Security Standards Council (PCI SSC) is a global forum that brings together payments industry stakeholders. It was originally established by American Express, Discover, JCB International, Mastercard and Visa. The Council’s mission is to enhance global payment account data security by developing standards and supporting services.
PCI standards are those developed by the council to improve security in payments.
What is PCI participating organization?
Participating Organization membership in the PCI Security Standards Council is open globally to those affiliated with the payment card industry, including merchants, banks, processors, hardware and software developers, and point-of-sale vendors.
What are the benefits of PCI security standards and how do they bring value to our customers?
Any PCI security standard, whether it is PCI DSS, SSF, Point-to-Point Encryption (P2PE) or other, provide guidance on how to secure environment which gets “touched” by cardholder data. That obviously builds trust with our customers as it increases our credibility, optimizes business impact and risks and prevents data breaches.
What is the PCI DSS?
Payment Card Industry Data Security Standard (PCI DSS) includes 12 requirements and is applicable for any business that stores, processes or transmits cardholder data. Those requirements need to be continuously monitored, which leads companies to be aware of their cardholder’s environments 24/7.
In what ways will Aevi be adopting the PCI standards?
In any ways which supports our business. We need to keep in mind that any standard, whether it is PCI or ISO are here to provide a guidance on a requirement or process. Aevi being registered as a Participating Organization with PCI SSC allows us to join discussions on those standards as well as keeps us in the loop of any news from the world of PCI compliance that we operate in.