Information Security is often required by companies or industries for you to continue doing business with them. Compliance regulations change frequently and are becoming more prevalent—HIPAA/HITECH, FAR, DFAR, PCI DSS and GCBA to name a few.
It’s important to have trained professionals review your network. We have found that many companies that have a third-party credit card processor don’t realize they are storing credit card numbers on their servers. Penalties for not complying with requirements, such as PCI, will not only put a dent in your company’s earnings, but your reputation will also be damaged if a breach occurs. If your security is compromised while out of compliance, you run the risk of losing your merchant account, which means you’ll be unable to accept credit cards.
Data security is ever-evolving, and with that, demands to meet compliance requirements are growing. Our team has the expertise needed to meet these stringent industry-specific compliance requirements. We offer managed compliance solutions so that you can focus on what’s important to you. Warren Averett has the expertise necessary when it comes to specific industry requirements to help you thrive.
Any business that accepts credit cards is required to meet the requirements of Payment Card Industry Data Security Standard compliance (PCI). The extent of the requirement is based on the number of transactions made each year. The lowest requirement is level four, which is 20,000 or fewer transactions a year. This requires you to complete an online Self-Assessment (SAQ) and pass a quarterly vulnerability scan. We have found that many companies aren’t following the basic requirements.
Learn more about our team members’ expertise, insights and how we can help you thrive