San Antonio, TX – October 22, 2013 – Digital Defense, Inc. (DDI), a leading provider of managed, cloud-based security assessment solutions is changing the approach organizations take when satisfying the Payment Card Industry Data Security Standard (PCI DSS) compliance requirements. This process is critical to ensuring that a customer’s payment card data is secure by comprehensively evaluating the security posture of organizations so they not only achieve compliance, but demonstrate the highest level of security possible to mitigate a potential security breach.
“DDI believes PCI compliance is achieved by continuously managing an organization’s security posture, stated Mark Bell, EVP of Operations. “Having a strong line of defense in place is no longer a luxury but a requirement. The selection of an information security provider is paramount in defending against devastating breaches. The PCI Standards Security Council has set a worldwide standard that is highly respected. Our goal is to instill a higher level of understanding surrounding the compliance process so that a client is evaluating their programs holistically, driving a “proactive” versus a “reactive” approach to information security.
LeWayne Ballard, Engineer Systems Compliance at GVTC added, “At GVTC, the protection of our customer information is critical. It is our responsibility to safeguard our member data with the highest levels of security solutions. DDI’s PCI-Pro Solution has been instrumental in helping us implement, manage and build a security focused strategy that achieves PCI compliance and goes a step beyond in mitigating risk. “
“Instead of running scan after scan on an enterprise with a “fail until you pass” mindset, we approach compliance by standing by our customers providing support and expertise until compliance is achieved. Our experience and history of achieving PCI Approved Scanning Vendor (ASV) certification for eight years running puts us in an elite class of vendors and a valued resource to our client base,” said Bell.
DDI’s solution, PCI-Pro is a managed PCI compliance offering built upon DDI’s popular managed vulnerability scanning solution, Vulnerability Lifecycle Management – Professional (VLM-Pro) which includes vulnerability remediation project management delivered by a team of Personal Security Analysts. This innovative approach built on the foundation of the unique support provided by DDI’s PCI compliance experts help clients attain PCI compliance faster and effectively maintain it over time.
The PCI Council is diligently working to improve and make recommendations to standards based on market needs. This year, key drivers include: lack of education and awareness, weak passwords and authentication challenges[i].
About the PCI Security Standards Council
The PCI Security Standards Council is an open global forum that is responsible for the development, management, education, and awareness of the PCI Data Security Standard (PCI DSS) and other standards that increase payment data security. Founded in 2006 by the major payment card brands American Express, Discover Financial Services, JCB International, MasterCard Worldwide and Visa Inc., the Council has more than 700 Participating Organizations representing merchants, banks, processors and vendors worldwide. https://pcisecuritystandards.org.
[i] https://www.pcisecuritystandards.org/pdfs/13_08_15_Changes_Highlights_Press_Release.pdf