PCI DSS Program
- Gap Analysis & Scope Definition
- PCI ASV Vulnerability Scanning
- PCI DSS Penetration Testing
- PCI DSS Vulnerability Assessment
- PCI DSS Web Application Testing
- PCI DSS Wireless Analysis & Reporting
- PCI DSS Remediation Guidance & Support
- PCI DSS SIEM/FIM/IEC/SOC/IPS/WAF
- PCI DSS Report on Compliance (ROC)
- PCI DSS Certified Attestation of Compliance (AOC)
- PCI DSS Self-Assessment & Validation
- PCI DSS Policy, Incident Reponses, SDLC Development & Training
- PCI DSS BOD, Top Management & staff Training
Payment Card Industry Data Security Standard (PCI DSS) Program
The Payment Card Industry Data Security Standard (PCI DSS) became a mandated requirement for all companies and organizations that process card transactions in July 2007. It has been developed and supported by the entire world's major card issuers, including Visa, MasterCard, American Express, and Discover, to create a universal security framework for payment processing.
ScanWave Management and Staff have been working with sister company as an international partner (Al Raeda for Information security and Technology Co. l.l.c (dba Comply Wave)) with world-class PCI DSS expert QSA’s, in addition to other partners services, ASV, VISA PIN Security, PCI 3DS certified teams available onsite to serve the MENA, GCC region enterprise customers.
Both companies have delivered successfully a wide range of security and compliance projects in the region since the begging of the PCI DSS. Our team and partners are PCI DSS QSA listed and we are certified as QSA company to issue RoC and AoC for customers in the CEMEA region.
Payment Card Industry Approved Scanning Vendor Services
All companies that process and store customer payment card transactions are required to maintain their network security in accordance with the detailed specifications mandated under the Payment Card Industry data security standard (PCI DSS).
Failure to demonstrate compliance can result in severe restrictions being placed on merchants by the card issuers, including the ultimate sanction of withdrawal of card authorization facilities.
Our partner is one of a select group of approved scanning vendors (ASV) certified by the PCI to carry out the periodic scans of the merchant network to identify any critical vulnerabilities and to perform the necessary PCI DSS penetration tests needed to prove the integrity of the corporate IT infrastructure.
VISA PIN Security Program
The Visa PIN Security program was initiated to ensure that entities handling Visa PIN transactions and entities performing cryptographic key management activities implement a high level of security to minimize the possibility of PIN compromise and subsequent financial brand and goodwill impact to all participants.
Visa requires that a detailed remediation plan with target dates for review. Following that, clients are required to implement all remediation actions and provide ScanWave with compelling evidences of completion; this can be in the form of documents, scans, copies of logs, screenshots, pictures, or video clips which demonstrate that previous non-compliance has been removed.
PCI 3DS Program
ScanWave management and Staff have years of experiences working with world-class PCI DSS expert QSA's, ASV, VISA PIN Security, PCI 3DS certified teams available onsite to serve the MENA, GCC region enterprise customers, delivered successfully a wide range of security and compliance projects in the region since the begging of the PCI DSS.
PCI DSS, PCI 3DS, VISA PIN Security Remediation Services
ScanWave remediation will help merchants and service providers understand the PCI DSS, PCI 3DS, and VISA PIN Security standards and to apply it to the current payment card transaction environment. The three steps for adhering to the PCI DSS, PCI 3DS and VISA PIN Security.
PCI DSS, PCI 3DS, and VISA PIN Security standards allow common-sense steps that mirror best security practices. The PCI DSS globally applies to all entities that store, process, or transmit cardholder data. PCI DSS and related security standards are administered by the PCI Security Standards Council, which was founded by American Express, Discover Financial Services, VISA International, MasterCard Worldwide, and Visa Inc. Participating organizations include merchants, payment card issuing banks, processors, developers, and other vendors.
The three steps for adhering to the PCI DSS, PCI 3DS and VISA PIN Security
Identifying cardholder data, taking an inventory of your IT assets and business processes for payment card processing, and analysing them for vulnerabilities that could expose cardholder data.
Fixing vulnerabilities and not storing cardholder data unless you need it.
Comply and submit required remediation validation records. and submitting compliance reports to the acquiring bank and card brands you do business with or regulatory body.