UDTSecure™ Consultants Perform PCI DSS Compliance Assessments: Retail Industry

The customer was not sure on the type of reporting forms to be submitted and had a number of deficiencies not addressed from their prior assessment.

The Customer

Large retail organization with $2.2 billion in annual revenue and more than 132 locations across the U.S. and Canada required assistance completing their annual PCI DSS compliance assessments.

The Challenge

The customer was not sure on the type of reporting forms to be submitted and had a number of deficiencies not addressed from their prior assessment. The expanding business, in conjunction with the evolving PCI DSS controls, left significant gaps in the organization’s ability to achieve compliance. The business challenges included the following:

  • Confirming scope of Cardholder Data Environment
  • Identifying gaps in compliance with new PCI DSS 3.2 standards
  • Maintaining compliance for their 132+ retail locations without internal IT staff
  • Developing actionable remediation strategy to meet compliance

The UDTSecure™ Solution

UDTSecure proposed a PCI DSS 3.2 Gap Assessment to help the Customer confirm what was in place, and what problems they would need to remediate in order to achieve compliance. The PCI DSS Gap Assessment confirmed the correct PCI merchant level for which the chain should file, and also identified that proper segmentation could minimize the scope of their cardholder data environment, saving them tens of thousands of dollars and ongoing audit and testing costs.

Through PCI Managed Service agreement, our client is able to outsource ongoing requirements for PCI compliance to us, including:

  • Quarterly ASV and internal vulnerability scans
  • Wireless testing
  • Annual penetration testing
  • Assistance in completing self-assessment questionnaires
  • Real-time monitoring of firewall logs
  • Outsourced security operations team for “as needed” incident response

The Benefits

The UDTSecure PCI Solution helped the Customer realize the following business benefits:

  • Cardholder environment minimized through proper segmentation
  • Managed services that helps provide required quarterly and annual PCI testing
  • UDTSecure removed the Customer’s monitoring burden through outsourcing activities they were not equipped to handle by internal resources and technology

To learn more about UDTSecure’s PCI DSS compliance assessments, please call 954-308-5100 today!

Download Now!

Accomplish More With UDT

Get your custom solution in cybersecurity, lifecycle management, digital transformation and managed IT services. Connect with our team today.

More to explore

Smishing Attacks are on the Rise—Here’s How To Keep Your Data Safe

Smishing attacks are on the rise, posing a significant threat to data security. Originating from a blend of SMS and Phishing, these attacks have seen a drastic increase since 2020. The widespread use of smishing attacks has persisted, with a lack of awareness being a major issue. Many view these as simple spam messages, unaware of the danger they pose. This blog aims to raise awareness about smishing and provide actionable insights to protect yourself and your organization.

5 Strategic Ways to Master Your IT Budget

Enhance finance IT efficiency with UDT and Cisco. Master IT budget planning, security, and innovation in the competitive industry.

IT Compliance Training for the Finance Industry (Get Your Resource Kit Now)

Download UDT’s IT Compliance Kit for financial services – empowering IT leaders to educate staff on compliance, data protection, and security.

Trend Alert! An Insider’s Look at the Latest IT Solutions for the Finance Industry

Explore the latest IT trends in finance and how UDT’s cutting-edge cybersecurity and managed IT services redefine security for the digital age.

Streamlining IT Operations in the Finance Industry—Top 10 Strategies for IT Leaders

Unleash the power of UDT and Cisco solutions with top 10 strategies to streamline IT operations for finance—enhancing security, compliance, and efficiency.

IT Leaders—Here’s Your Checklist for Disaster Recovery Planning in the Finance Industry

Equip your IT department with a disaster recovery plan checklist. Navigate unexpected technological upheavals with UDT.

Experiencing a security breach?

Get immediate assistance from our security operations center! Take the following recommended actions NOW while we get on the case:

RECOMMENDED IMMEDIATE NEXT ACTIONS

  1. Determine which systems were impacted and immediately isolate them. Take the network offline at the switch level or physically unplug the systems from the wired or wireless network.
  2. Immediately take backups offline to preserve them. Scan backups with anti-virus and malware tools to ensure they’re not infected
  3. Initiate an immediate password reset on affected user accounts with new passwords that are no less than 14 characters in length. Do this for Senior Management accounts as well.

Just one more step

Please fill out the following form,