The Payment Card Industry (PCI) developed Data Security Standards (DSS) which Merchants and Service Providers, who process, transmit or store credit card data, are required to strictly adhere to. Irrespective of the amount of credit card transactions a merchant or service provider handles they are required to comply with the PCI DSS.
Kyte are the first and only validated Qualified Security Assessor Company in Malta and can offer their services to merchants and service providers in all of Europe, Middle East and Africa as well as other regions. Kyte can assist you in becoming fully compliant and/or can review your operation to certify that you are PCI DSS compliant.
One of the requirements is to have a quarterly scan by an Approved Scanning Vendor to test for vulnerabilities on your website. Kyte can provide you with this service as well as Web Application scanning which satisfies requirement 6.6 of PCI DSS.
Another very important requirement of PCI DSS is to conduct Attack and Penetration Testing. We are proud to be able to offer this service not only as a means to satisfy the requirement but to ensure there any holes in the system are patched timely. The penetration test involves a considerable amount of manual testing. Testing is conducted both externally and internally and can take the form of white box or black box. Network as well as application layer tests are conducted as part of the exercise. We are confident that customers will find our fees for such a service extremely competitive. Testing will be carried out based on the latest version of the PCI DSS.
We can assist you with PCI DSS Compliance as well as Certification. We know very well that a one-size fits all approach in interpreting PCI DSS requirements does not work. It is this approach adopted by some assessors in fact, which causes many companies to go over time and over budget in their efforts to achieve compliance. We believe that each company has to be assessed by taking into consideration its size, resources, business constraints and risk exposure.
If you would like to discuss your requirements and request a quote, please contact us.
For more information about PCI DSS refer to our resources section.
Click here to view related articles