PCI DSS Compliance Services

Recent high profile data breaches have highlighted that there is a large difference between being passed as PCI DSS compliant by a QSA and actually being secure. Organizations that are subject to PCI DSS must not only achieve compliance for an assessment, but must continually maintain it. Unfortunately, due to the checklist nature of PCI assessment and often a lack of NonStop expertise from QSAs, organizations that have passed the assessment and been determined to be compliant may not necessarily be secure. As the experts in PCI DSS and security for the HPE NonStop, we can help ensure that as well as being compliant, your HPE NonStop systems and cardholder data environment are truly secure.

Knightcraft’s PCI DSS Compliance service is designed to assist organizations achieve and maintain PCI compliance and build secure systems. While PCI DSS compliance can only be determined and given by a QSA, we can assist an organization about to embark on the long process of PCI compliance or maintain continued compliance and help you to protect your cardholder data.

A typical PCI DSS Compliance service may include:

  • A review of the organization’s documentation that is required for PCI DSS.
  • Assistance in identification of locations where cardholder data is stored, processed or transmitted.
  • A review of access to cardholder data.
  • A review of privileged account usage, management and password distribution.
  • A review of typical system configuration areas where privileged userid authority (such as super.super/root) can be gained, to ensure that these gaps are not open.
  • Documentation of all findings with specific recommendations of what needs to be done to move towards and maintain PCI DSS compliance.
  • Focus on not only achieving compliance, but also on ensuring that systems are secured in line with industry best practices.

PCI DSS Compliance For HPE NonStop Servers

If you haven’t already downloaded our comprehensive technical white paper co-authored with a QSA on achieving PCI DSS compliance on the HPE NonStop server platform, click here…

You may be PCI DSS compliant but are you really secure?

For more details on why being PCI DSS compliant doesn’t necessarily mean that you are secure, click here to view the presentation on The Difference Between Compliance and Security that we delivered at the HPE NonStop Advanced Technical Bootcamp.

Knightcraft services can be obtained directly from Knightcraft or can be procured through HPE. Please Contact us or your HPE account team to find out how we can help you achieve your security and compliance objectives.