© Vendor Safe Technologies 2008 B REACHES BY M ERCHANT T YPE 70% 1% 9% 20% Data provided by Visa Approved QIRA November 2008 from 475 Forensic Audits.

Slides:

Advertisements

Similar presentations

Surviving the PCI Self -Assessment James Placer, CISSP West Michigan Cisco Users Group Leadership Board.

Advertisements

Payment Card Industry Data Security Standard AAFA ISC/SCLC Fall 08.

Session 4: Data Privacy and Fraud Moderator: Bill Houck, Director, Risk Management, UATP Panelist: Peter Warner, EVP, Retail Decisions Cherie Lauretta,

National Bank of Dominica Ltd Merchant Seminar Facilitator: Janiere Frank Fraud & Compliance Analyst June 16, 2011.

Evolving Challenges of PCI Compliance Charlie Wood, PCI QSA, CRISC, CISA Principal, The Bonadio Group January 10, 2014.

Mobile Payment Security The Good, the Bad and the Ugly

PCI Compliance: The Gateway to Paradise PCI Compliance: The Gateway to Paradise.

PCI-DSS Erin Benedictson Information Security Analyst AAA Oregon/Idaho.

Complying With Payment Card Industry Data Security Standards (PCI DSS)

2014 PCI DSS Meeting OSU Business Affairs Process Improvement Team (PIT) Robin Whitlock & Dan Hough 10/28/2014.

Steve Jordan Director. Industry Solutions 05/05/14 Managing Chaos: Data Movement in 2014.

JEFF WILLIAMS INFORMATION SECURITY OFFICER CALIFORNIA STATE UNIVERSITY, SACRAMENTO Payment Card Industry Data Security Standard (PCI DSS) Compliance.

Property of CampusGuard Compliance With The PCI DSS.

Smart Payment Processing ™ Protecting Your Business from Card Data Theft Presenter: Lucas Zaichkowsky.

Credit Card Compliance Regulations Mandated by the Payment Card Industry Standards Council Accounting and Financial Services.

Presented by : Vivian Eberhardt, Supervisor Cash and Credit Operations

PCI Compliance Forrest Walsh Director, Information Technology California Chamber of Commerce.

Data Security Standard. What Is PCI ? Who Does It Apply To ? Who Is Involved With the Compliance Process ? How We Can Stay Compliant ?

Property of the University of Notre Dame Navigating the Regulatory Maze: Notre Dame’s PCI DSS Solution EDUCAUSE Midwest Regional Conference March 17, 2008.

Payment Card Industry (PCI) Data Security Standard (DSS) Compliance Commonwealth of Massachusetts Office of the State Comptroller March 2007.

8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.

CSE 4482, 2009 Session 21 Personal Information Protection and Electronic Documents Act Payment Card Industry standard Web Trust Sys Trust.

Around the World, Around the Corner WorldPay for Small Business.

Why Comply with PCI Security Standards?

Northern KY University Merchant Training

PCI's Changing Environment – “What You Need to Know & Why You Need To Know It.” Stephen Scott – PCI QSA, CISA, CISSP

Security & PCI Compliance The Future of Electronic Payments Security & PCI Compliance Greg Grant Vice President – Managed Security Services.

Disclaimer Copyright Michael Chapple and Jane Drews, This work is the intellectual property of the authors. Permission is granted for this material.

What to Do if Compromised

Payment Card Industry Data Security Standard (PCI DSS) By Roni Argetsinger

New Data Regulation Law 201 CMR TJX Video.

PCI DSS Managed Service Solution October 18, 2011.

An Introduction to PCI Compliance. Data Breach Trends About PCI-SSC 12 Requirements of PCI-DSS Establishing Your Validation Level PCI Basics Benefits.

NUAGA May 22,  IT Specialist, Utah Department of Technology Services (DTS)  Assigned to Department of Alcoholic Beverage Control  PCI Professional.

Brian Cloud August 06, Overall Digital Security  What is Digital Security  Murphy’s Law Since 2005, over 263M records breeched (privacyreports.com)

DATE: 3/28/2014 GETTING STARTED WITH THE INTEGRITY EASY PCI PROGRAM Presenter : Integrity Payment Systems Title: Easy PCI Program.

PCI: As complicated as it sounds? Gerry Lawrence CTO

PCI DSS Readiness Presented By: Paul Grégoire, CISSP, QSA, PA-QSA

FIVE STEPS TO REDUCE THE RISK OF CYBERCRIME TO YOUR BUSINESS.

Introduction to Payment Card Industry Data Security Standard

Identity Protection (Red Flag/PCI Compliance/SSN Remediation) SACUBO Fall Workshop Savannah, GA November 3, 2009.

Security Professional Services. Security Assessments Vulnerability Assessment IT Security Assessment Firewall Migration Custom Professional Security Services.

PCI Compliance Technical Overview. RM PCI Calendar Dec 2005: Began PCI 15.1 development Feb 2006: Initial PCI Audit Sept 2006: Official 15.1 PCI Release.

PCI Compliance: The Gateway to Paradise PCI Compliance: The Gateway to Paradise.

Data Security and Payment Card Acceptance Presented by: Brian Ridder Senior Vice President First National September 10, 2009.

Wireless Intrusion Prevention System

PCI Training for PointOS Resellers PointOS Updated September 28, 2010.

ThankQ Solutions Pty Ltd Tech Forum 2013 PCI Compliance.

e-Learning Module Credit/Debit Payment Card Acceptance and Security

1 Payment Card Industry (PCI) Security Standard Developed by the PCI Security Council formed by major card issuers: Visa, MasterCard, American Express,

Data Security & Privacy: Fundamental Risk Mitigation Tactics 360° of IT Compliance Anthony Perkins, Shareholder Business Law Practice Group Data Security.

VeriShield Protect Revolutionary technology that simplifies PCI DSS compliance with no system upgrades Now available on V x Solutions!

Standards in Use. EMV June 16Caribbean Electronic Payments LLC2.

HotSpot Software HotSpot Billing Software helps you control and bill Internet access by redirecting your customers to sign-in or pay on your login page.

By: Matt Winkeler.  PCI – Payment Card Industry  DSS – Data Security Standard  PAN – Primary Account Number.

©2014 Cleo. All rights reserved. Company confidential. Managing Chaos: Andy Moir Director, Product Marketing 2 Data Movement in 2015.

The Payment Card Industry Data Security Standard (PCI DSS) is a proprietary information security standard for organizations that handle branded credit.

WHAT NEW, WHAT NEXT IN PAYMENT PROCESSING. EMV WHAT IS EMV? 3  An acronym created by Europay ®, MasterCard ® and Visa ®  The global standard for the.

Payment Card Industry (PCI) Rules and Standards

PCI-DSS Security Awareness

Payment Card Industry (PCI) Data Security Standard (DSS) Compliance

Payment card industry data security standards

Internet Payment.

Breaches by Merchant Type

Session 11 Other Assurance Services

Securing Information Systems

Payment Card Industry (PCI) Data Security Standard (DSS) Compliance

PCI DSS Erin Carrick.

Payment Card Industry (PCI) Data Security Standard (DSS) Compliance

Managing Chaos: Data Movement in 2014 Steve Jordan

Presentation transcript:

© Vendor Safe Technologies 2008 B REACHES BY M ERCHANT T YPE 70% 1% 9% 20% Data provided by Visa Approved QIRA November 2008 from 475 Forensic Audits

© Vendor Safe Technologies 2008 PCI H EADLINES

A M I AT RISK ?

© Vendor Safe Technologies 2008 W HAT I S PCI PCI = Payment Card Industry VISA American Express MasterCard Worldwide Discover Financial Services JCB International –Together they formed the PCI Security Standards Council 4

© Vendor Safe Technologies 2008 W HAT I S PCI/DSS PCI DSS = Payment Card Industry Data Security Standards Designed to STOP computer hackers! –Data Breach –Theft of Cardholder Data –Fraud –Financial Loss to merchants Compliance is MANDATORY: –To avoid fines and penalties –Safeguard locations against hackers 5

© Vendor Safe Technologies Required to Complete - PCI Self Assessment Questionnaire 200+ Questions to Address Across THREE CRITICAL COMPONENTS

© Vendor Safe Technologies 2008 Policies & Procedures NetworkSecurity Data Access 7 BECOMING COMPLIANT CAN BE A DAUNTING TASK

© Vendor Safe Technologies 2008 Our Solution PCI MANAGED SECURITY SUITE Provided by New Haven Cash Register and VendorSafe™ Our Solution PCI MANAGED SECURITY SUITE Provided by New Haven Cash Register and VendorSafe™

© Vendor Safe Technologies 2008 VendorSafe™ PCI Managed Security Suite 1.Global Security Mesh™/VPN  Managed Firewall with Security Services 2.Wi-Fi HotSpot Plus ™ Up to four secure wireless networks per location 3.TrustVault™ Certificate  $50K Guarantee per location 9

© Vendor Safe Technologies 2008 VendorSafe™ GLOBAL SECURITY MESH™/VPN  VPN Architecture Benefits  Hierarchical VPN Architecture All end users on same network Support Staff can easily access remote locations  True two-factor authentication Required by PCI-DSS  No need to remember or distribute IP addresses  Reduction in liability involving terminated support staff 10

© Vendor Safe Technologies 2008 VendorSafe™ GLOBAL SECURITY MESH™/VPN  Managed Firewall  Auto Broadband Backup Credit card processing stays online Minimizes support calls  Security policy and management Block incoming and outgoing internet traffic  Gateway Logging Compliant logging for communication records 11

© Vendor Safe Technologies 2008 VendorSafe™ GLOBAL SECURITY MESH™/VPN  Managed Firewall (continued)  Forced Configuration Manager™ Ensures secure communications  Rogue Device Manager™ Keeps hackers out of your system  IP Data Blocker™ Prevents data transfer to any unauthorized IP address 12

© Vendor Safe Technologies 2008 VendorSafe™ Wi-Fi HOTSPOT PLUS  HotSpot Features:  Four Separate Wireless Networks - Public / Private Segregation  Encrypted Communications  Contains all necessary Infrastructure for Wireless POS devices / Handhelds  VendorSafe™ Bandwidth Q.O.S. Manager - Dynamically allocates resources  URL Web Filtering Family Friendly Wi-Fi Browse by Category 13

© Vendor Safe Technologies 2008 VendorSafe™ TRUSTVAULT™ CERTIFICATE  The VendorSafe Guarantee: Covers up to $50,000 in direct expenses relating to a data breach including: Mandatory security audit Card replacement fees Fines and penalties, ex. VISA  Covers physical or electronic data breach at EVERY merchant location 14

© Vendor Safe Technologies 2008 WHEN A BREACH OCCURS  Merchant Expenses:  Mandatory Forensic Audit - $10 to $20K  Fines for Non Compliance  VISA - up to $500K  MasterCard – up to $200K  Credit Card Replacement $25.00 per card  Risk to Brand Equity - Priceless $50K+ to Recover from a Breach 15

D ID YOU READ THE FINE PRINT ? Merchants have already agreed to be PCI Compliant ! Merchants have already agreed to be PCI Compliant !

D ON ’ T BECOME A VICTIM !

New Haven Cash Register Selling and Supporting POS Solutions Since 1949

New Haven Cash Register Company 2546 State Street Hamden, CT ext New Haven Cash Register Selling and Supporting POS Solutions Since 1949 Since 1949 New Haven Cash Register Company has provided point of sale & cash register systems to Ct based restaurant and retail businesses. Every sale is personalized to meet customer specific requirements by providing a full range of implementation(configuration, installation, training, go-live standbye), software support and on-site services.. Whether it is a robust point of sale solution or less sophisticated cash register system New Haven Cash Register can recommend the product that best meets your requirements & budget. Every system is fully programmed and properly configured which reduces your learning curve and start up problems. Call today for the right system- the first time Are you processing credit cards with your POS system? If you are, then you know you must use a PCI compliant version or risk a major fine from the credit card industry should a security breach occur. New Haven Cash Register provides PCI compliant solutions.

I N THE NEWS