2014; this is the year where PCI DSS really takes off, more and more banks have pushed their merchants to be compliant and certified with PCI DSS although just by answering the Self-Assessment Questionnaire (SAQ). But why suddenly all these banks become so actively engage in PCI DSS? This is due to the card patron especially VISA and MasterCard.
After what happen to the infamous Target retailer in early 2014, card brands have been in caution mode and have change their way in allowing entities to connect to them. VISA and MasterCard have revamped their ways especially VISA where they required that ANY entities that wants to connect to them MUST be certified in PCI DSS either merchant level or service provider level. This have cause many entities …show more content…
However, for them to get certified in a period amount of time is almost impossible due to the ever changing business nature and the set up that is at start no according to the guidelines of PCI, therefore they will need more time to remediate all the gaps and as there are big and crucial customer to VISA, VISA will of course will give them some time or space to remediate as long as they can show that they are going towards certification, for how long? That is still a question to be asked not just by us, but also everybody that have been certified. But with that, while the banks have some space, merchant and service provider that connects with the bank does not get the same treatment. Therefore more and more merchants and payment gateways are starting to be more aware that PCI is needed for them to ensure the continuity of their business especially if it involves VISA and MasterCard. With the increment of awareness of the need to be certified, we assume that the amount of entities become certified with PCI do increase. But why there are still a lot of them are not yet …show more content…
Implementation also now can be much easier if the correct advice is given to the correct entities, some entities that have huge amount of funds and a large scope will require a different solutions compare to the smaller entities due to their nature and the business process in terms of handling card data. For that they need to have a proper advisory that can help them not just becoming compliant and stay compliant, but at the same time giving cost–effective solution that will help keep the cost to the best level and not spending on UNNECESSARY items. For a free scoping or advisory on how we can help you in your PCI-DSS journey, drop us an email at avantedge@pkfmalaysia.com or contact us
After what happen to the infamous Target retailer in early 2014, card brands have been in caution mode and have change their way in allowing entities to connect to them. VISA and MasterCard have revamped their ways especially VISA where they required that ANY entities that wants to connect to them MUST be certified in PCI DSS either merchant level or service provider level. This have cause many entities …show more content…
However, for them to get certified in a period amount of time is almost impossible due to the ever changing business nature and the set up that is at start no according to the guidelines of PCI, therefore they will need more time to remediate all the gaps and as there are big and crucial customer to VISA, VISA will of course will give them some time or space to remediate as long as they can show that they are going towards certification, for how long? That is still a question to be asked not just by us, but also everybody that have been certified. But with that, while the banks have some space, merchant and service provider that connects with the bank does not get the same treatment. Therefore more and more merchants and payment gateways are starting to be more aware that PCI is needed for them to ensure the continuity of their business especially if it involves VISA and MasterCard. With the increment of awareness of the need to be certified, we assume that the amount of entities become certified with PCI do increase. But why there are still a lot of them are not yet …show more content…
Implementation also now can be much easier if the correct advice is given to the correct entities, some entities that have huge amount of funds and a large scope will require a different solutions compare to the smaller entities due to their nature and the business process in terms of handling card data. For that they need to have a proper advisory that can help them not just becoming compliant and stay compliant, but at the same time giving cost–effective solution that will help keep the cost to the best level and not spending on UNNECESSARY items. For a free scoping or advisory on how we can help you in your PCI-DSS journey, drop us an email at avantedge@pkfmalaysia.com or contact us