- Infrastructure Services
- Enterprise Security Solutions
- IT Auditing and Compliance Services
- Overview
- IT Auditing and Risk Assessment Services
- IT Audit and Compliance Services for Financial Institutions
- Business Continuity Services
- Business Continuity Program Portal
- Payment Card Industry (PCI) Compliance Services
- Security Assessment Services
- IT Compliance Services for Privacy Regulations
- Computer Forensics and Incident Response
- Customer Success Stories
- Project Management
- Enterprise Content Management
- Storage & Backup
- WebSphere Services
- Virtualization Services
Portal Payment Card Industry (PCI) Compliance Services
Security Assessment Services
IT Compliance Services for Privacy Regulations
Computer Forensics and Incident Response
Customer Success Stories
Project Management
We Calculate the Risks...
then Eliminate Them
|
Approximately every ten seconds, someone is a victim of identity theft. And one of the most common forms of identity theft – credit card fraud – has reached near epidemic proportions. According to the Federal Trade Commission, 42% of identity theft cases involve credit card fraud. |
| mandates that all merchants and service providers who store, process, or transmit payment card information need to be PCI-compliant. Compliance requirements include security management, policies, procedures, network architecture, software design and other critical protective measures to help ensure the safe handling of sensitive credit card information. Penalties for non-compliance include monetary fines, and/or account suspension and termination. Lighthouse Computer Services, already a leader in IT Compliance services throughout the Northeast U.S., is certified as a PCI Approved Scanning Vendor (ASV) and Qualified Security Assessor (QSA). Lighthouse’s expert consultants – all CISA-certified auditors, network engineers and project managers – stand ready to assist you with your PCI-related compliance needs. |
The PCI Data Security Standard
|
In September 2006, the PCI SSC put together by the five major card brands created the Payment Card Industry Data Security Standard (PCI DSS) in order to secure credit card data in a globally consistent manner. As a result, merchants, processors, point-of-sale vendors and financial institutions must now meet rigid PCI standards when accepting credit card payments. These standards include requirements for security management, policies, procedures, network architecture, software design and other critical protective measures to help ensure the safe handling of sensitive credit card information.
|
| How It Affects Your Business All merchants and service providers who store, process, or transmit payment card information need to comply with the standards set by the Payment Card Industry. There are different validation requirements for merchants and service providers. For example, merchants are divided into different levels based on the number of transactions they process throughout a year. Credit card companies may enforce the terms of their contracts by imposing fines, restrictions, and/or sanctions against businesses who do not comply with PCI standards. There are a number of things organizations need to do to validate their PCI compliance that range from Quarterly Scans by an ASV and Self Assessment Questionnaires (SAQ) to an on site audit called a Report on Compliance (ROC) performed by a QSA. |
|
How Lighthouse
Can Help Your Business
| Lighthouse’s ASV- and QSA-certified teams are highly trained to help merchants and vendors evaluate the security of their credit card systems, and help them achieve compliance with the PCI Data Security Standard. Lighthouse’s status as PCI-certified Qualified Security Assessors (QSA) allows us to perform annual onsite PCI Audits for merchants and service providers called a ROC. We can also help merchants and service providers prepare for assessments by first performing a Risk Assessment or Gap Analysis that will identify control weaknesses in their PCI Environment. Additionally, Lighthouse can provide consulting services |
| to assist the client in completing a SAQ or remediating findings. As an Approved Scanning Vendor (ASV), Lighthouse can conduct quarterly Network Security Scans for any merchant. Lighthouse also offers PCI Remediation Services in order to correct compliance issues discovered in a PCI Security Audit. Our professionals first create a comprehensive remediation roadmap – in which we tailor a plan to correct problems based on your current PCI compliance status – then implement the proper internal controls and tools required to move your company into full PCI compliance. |
About the
Lighthouse Team
| Lighthouse’s dedicated team of IT Compliance Consultants – all Certified Information Systems Auditors (CISA), PCI ASVs, PCI QSAs, Certified Network Engineers and Certified Project Managers – have performed hundreds of IT Compliance projects across all industries, including the highly regulated banking and financial sectors. Our consultants are the best in the business, and have multiple certifications in industry practices and testing methodologies. Lighthouse Computer Services is a trusted IT advisor to leading companies throughout the Northeast U.S., offering consulting, integration, and maintenance services on the latest |
| hardware and software. Using best-in-class technologies – including those from IBM, Microsoft, Enterasys, Tivoli, Symantec, NetApp, VMware, SEPATON, STORServer, Lotus, Acopia, APC, and Asempra – as well as a first-class Professional Services team, Lighthouse is able to design and implement cutting-edge solutions for complex enterprise environments. |
|
|
|
|
For more information or to schedule a no-cost initial consultation, please contact info@lighthousecs.com or call 888-542-8030 x113.
