Speed. Smarts. Skill.

Putting your ideas to work:

Vivat is a professional services organization focused on Enterprise Application Integration, Identity Management, Service-Oriented Architecture (SOA), Software as a Service (SaaS) solutions, Web 2.0 Mashup Adaption, and Technical Architecture of Enterprise level components. We deliver superior service and cost savings to clients by coupling exceptional talents with a deep understanding of the industry.

PCI

The Payment Card Industry Data Security Standard (PCI DSS) is a set of comprehensive Requirements designed for enhancing payment account data security to help facilitate the broad adoption of consistent data security measures on a global basis. Created to prevent credit card fraud through increased protection of sensitive data, it applies to all companies who hold, process or pass cardholder data. While avoiding the adoption of PCI standards can result in hefty non-compliance fees, business benefits of PCI compliance include operating a more secure network, protection of corporate brand and reputation, and reduced risk of data breaches and network attacks.

Vivat makes it easier to meet PCI Requirements and protect your customers important information. Our solution, AppScan helps ensure the security and compliance of Web applications throughout the software development lifecycle. AppScan scans Web applications within your infrastructure, tests for security issues and provides actionable reports and fix recommendations. AppScan features scanning capabilities, remediation recommendations, and a reporting system for developers, auditors, penetration testers and consultants.

To combat the rising trend in identity theft, the credit card brands have banded together to create the Payment Card Industry Data Security Standard (PCI DSS). The DSS consists of 12 major sections with which any company that comes in direct contact with credit card data must comply to be deemed "PCI Compliant.":

Build and Maintain a Secure Network.
Requirement 1: Install and maintain a firewall configuration to protect cardholder data;
Requirement 2: Do not use vendor-supplied defaults for system passwords and other security parameters;

Protect Cardholder Data.
Requirement 3: Protect stored cardholder data;
Requirement 4: Encrypt transmission of cardholder data across open, public networks;

Maintain a Vulnerability Management Program.
Requirement 5: Use and regularly update anti-virus software;
Requirement 6: Develop and maintain secure systems and applications;

Implement Strong Access Control Measures.
Requirement 7: Restrict access to cardholder data by business need-to-know;
Requirement 8: Assign a unique ID to each person with computer access;
Requirement 9: Restrict physical access to cardholder data;

Regularly Monitor and Test Networks.
Requirement 10: Track and monitor all access to network resources and cardholder data;
Requirement 11: Regularly test security systems and processes;

Maintain an Information Security Policy.
Requirement 12: Maintain a policy that addresses information security.

When it comes to PCI compliance, the ultimate burden rests on the merchant or service provider. Vivat offers an integrated compliance approach for our clients to comply with multiple Requirements without unneeded redundant controls and testing efforts. Our team is highly skilled and can help your company be PCI Compliant while boosting efficiency and security.

Partners