PSC Security Services

Security Services

pic_services_securityHands-on experience with both security and payments gives PSC the unique ability to assess, design, implement and maintain practical solutions that meet real-world requirements. PSC has a holistic view of payment security that translates into solutions that are as good in practice as in theory.

PSC security services are specifically designed to bridge public compliance demands with business needs and interests.

PCI Forensic Investigation (PFI) and Consultation Services

PSC is certified by the Payment Card Industry Security Standards Council and card brands as a PCI Forensic Investigator (PFI) Company. When an entity that stores, processes, or transmits payment card data is compromised and is the subject of a security issue, that entity may be required to engage a PFI to assess and report on the breach. PSC provides discreet onsite inspection of systems, networks, and applications to provide information as quickly as possible to identify the source and scope of the breach. This ensures that appropriate remediation can be applied to mitigate the impact of the breach and return to normal operational capabilities as soon as possible. This process can be applied when a breach is suspected, during a breach, and after a breach has been confirmed.

PSC also provides forensic services to Clients who do not need an official PFI report and for non-breach related needs:

  • Incident Response - In the case of a breach, PSC works with the client to re-establish business continuity as quickly as possible. PSC uses the latest tools and techniques to perform a detailed forensic review. After the onsite review has been concluded, PSC produces a forensic report that details the nature of the breach, the root causes, as well as provides remediation steps and recommendations.
  • Forensic Consultation Services - PSC recognizes that businesses in the payment card industry have non-breach related needs for forensic consulting related to PCI and PII, including assessing overall security and compliance posture. PSC offers a highly specialized forensic payment application analysis to assess the security of existing payment applications, systems, and underlying architectures.

FFIEC & FDIC

PSC provides a comprehensive program of risk assurance and security penetration testing designed to meet the requirements of GLBA, FFIEC, and FDIC.

The PSC process uses approved and qualified personnel to conduct real-world attacks against a system, thus enabling financial institutions to quickly identify and correct security weaknesses before they are discovered and exploited by others.

All the main types of penetration testing (application, telecom, network, wireless, social engineering, etc) can be combined for à la carte penetration testing specific to the risks identified in the assessment.

Risk Management

PSC establishes and documents an information security framework and formal risk management process. This approach bridges policy, risk evaluation and assessment, legal requirements, human resources, executive management, financial controls, and corporate governance to achieve a comprehensive risk management strategy.

Fraud and Payment Loss Management

PSC provides customized services for Fraud Prevention and Loss Prevention teams within retail, electronic commerce, and direct marketing organizations.

  • Assessment and evaluation of prevention systems in place
  • Retail and site assessment
  • Call center operation inspection and assessment
  • Employee training and awareness
  • Evaluation and integration of prevention analytics systems
  • First response training and support

 

Contact us for more information