Apr 3rd 2013
CBIZ Security & Advisory Services, LLC has expanded its payment data security service offering by obtaining the Qualified Security Assessor certification (QSA) from the Payment Card Industry Security Standards Council (PCI SSC).
The prestigious designation enables CBIZ Security & Advisory Services, which specializes in data security, risk management, and consulting services, to assess compliance and validate adherence to the PCI Data Security Standard (PCI DSS).
The achievement meets marketplace demand for payment card security providers to include a greater range of services. As a result, CBIZ Security & Advisory Services increases its capability to perform a variety of tasks, from assisting clients with performing self-assessments to performing audits for merchants and service providers who are required to complete a Level 1 Report on Compliance.
Karen Cassella, executive vice president of CBIZ Security & Advisory Services, states, "We can now provide clients with Qualified Security Assessors (PCI QSA) who have been certified by the Council to validate PCI DSS compliance. This is required when going through a PCI compliance audit. Further, we can now also bundle our expertise for clients that require a full range of compliance services such as HIPAA or Sarbanes Oxley, to become more cost-effective and operationally efficient."
"Information security is an ever-evolving field that requires an understanding of both technical solutions and business process controls to secure confidential information," says Brenda Brigman, executive vice president. "This accreditation places CBIZ Security & Advisory Services among a select group of providers. Organizations can place greater confidence in our ability to develop and implement critical protective measures to ensure the safe handling of cardholder information - including prevention, detection, and reaction to security incidents.
In order to become a certified QSA company, CBIZ Security & Advisory Services undertook a thorough review process to provide evidence that the company delivers PCI assessments in accordance with the PCI Data Security Standards at the highest level of performance and industry standards.
The goal of PCI DSS standards is to minimize the risk of credit card fraud and to prevent other data security risks. Both large and small organizations that store, process, or transmit payment card data via the five major payment card providers - Visa, MasterCard, American Express, JCB and Discover - must meet the standards to maintain the ability to accept payment cards. If not, they could face acquirer penalties and impair customer confidence and trust in doing business with them.