PCI Remediation Services

Overview


The Payment Card Industry Data Security Standard (PCI DSS) includes a set of requirements designed to enhance the protection of payment card data. The standard was developed by the major credit card brands (i.e., Visa, MasterCard, American Express, and Discover) and any merchant, bank or service provider that stores, processes, or transmits cardholder data is required to comply. Non-compliance may result in substantial fines and penalties as well as potential exclusion from payment card programs.

Randtronics offers a range of professional services designed to help organisations overcome the challenges to achieving PCI DSS compliance:

  • As the Trusted #1 Encryption Expert we can assist your organisation with Requirements 3 and 4 in the selection, design and deployment of encryption solutions where scope of compliance is reduced so that the initial and recurring costs are minimised.
  • Our experienced encryption consultants can help your organisation get its PCI DSS compliance program on track, through identification of scope, compliance gap analysis, and remediation consulting.

PCI DSS Remediation Services


Protect stored cardholder data (Requirement 3)

For many organisations the encryption of stored payment card data, as mandated by Requirement 3 of the standard, forms one of the key technical challenges to reaching compliance. Randtronics can help your organisation cost effectively and easily comply with PCI DSS encryption needs for data at rest.

We are able to provide encryption subject matter expertise that will enable your organisation to fill in the gaps when discussing Requirement 3 with your QSA. Randtronics encryption skills have been gained over the years through real deployments for projects.

Our solutions based consulting service enables a customer to simplify the complexity into manageable areas of building the compliance architecture. The perils of implementing wrong encryption solutions can be avoided as we are experienced in designing and deploying solutions that meet your security, performance, compatibility, flexibility, availability and manageability requirements.

Randtronics can also assist your organisation with the implementation of tokenization solutions. These solutions can reduce the scope of PCI DSS compliance in your environment, or provide compensating controls in cases where encryption may not be feasible on certain legacy platforms. Furthermore, we provide solutions for the masking of payment card data displayed to employees or other parties.

Our consultants follow a proven and refined methodology that allows your organisation to make the right choices and that ensures your chance of successful deployment of a PCI DSS compliant solution.

Randtronics provides a range of Requirement 3 consulting services including requirements understanding, solution design to meet budgetary and political constraints, costing, proof of concept, implementation and post sales support. We also offer services in the areas of data flow analysis, key management analysis, key roll-over services, specialised software development for crypto integration, training and performance benchmarking.

Encrypt transmission of cardholder data across open, public networks (Requirement 4)

Compliance with Requirement 4 of the standard requires that an organisation encrypts cardholder data that is transmitted across open, public networks. This includes transmission over the Internet and wireless communications, as well as any network that the organisation does not own or control, including shared or leased networks.

Randtronics provides a range of Requirement 4 consulting services designed to help your organisation cost effectively and easily comply with PCI DSS encryption needs for data in motion. We have experience in designing and deploying network encryption solutions that are quick to set up, easy to manage, and transparent to network and application performance and behaviour.

What We Offer

Encryption of Files and Folders - Randtronics DPM File



Encryption of Laptops and Desktops - Randtronics DPM File



Encryption of Databases - Randtronics DPM File



Encryption, Masking, Tokenization of Web, Application and Databases - Randtronics DPM Token Manager



Encryption of Metadata in Web, Application and Databases - Randtronics DPM Token Manager



Management of encryption keys - Randtronics DPM Key Manager



Straightforward integration with a HSM - Randtronics DPM Key Manager



Encryption of SAP ERP Systems - Randtronics DPM File and Token Manager



Encryption of Oracle Financials - Randtronics DPM File and Token Manager

footerLogo
Randtronics LLC

303 Twin Dolphin Drive
Suite 600
Redwood City, CA 94065
United States

  • +1 (650) 632 4272
  • +1 (650) 591 9901
Randtronics Pty Limited

S1.1, Level 1, Building A
64 Talavera Road
North Ryde, NSW 2113
Australia

  • +61 2 8873 1999
  • +61 2 9870 8560
  • enquiry@randtronics.com

Randtronics© 2002 - 2018 | Site design by Wolff