Reviewed three of the leading Web application security products,we do confirmed that Cenzic was the most comprehensive solution over the other SaaS and software models that we reviewed. The fact that Cenzic has both a software and a SaaS model also allows for flexibility in the future.
Paymetric (the software provider for managing payment card transactions for enterprise companies using SAP), has chosen Cenzic’s SaaS solution to attain PCI compliance 6,6 and to protect their Website from hacker attacks.
When Paymetric was determining the best solution to secure their Website from hacker attacks as well as enabling PCI compliance for 6,6, they chose Cenzic due to its hybrid model of offering both software and SaaS solutions. They recognized the benefit of “jump starting” their security posture within one week, while having the option down the future to purchase traditional software that would integrate seamlessly into their SaaS product if they so desired. It’s like having the best of both worlds.
There is another reason that EVERY business needs to have some sort of WRITTEN security policies in place.
At this point there is no PCI compliance police force that visits every merchant that processes credit card payments. Compliance enforcement is the responsibility of the card brands, and this responsibility bring out the chain through the payment processors. Eventually, merchants will be expected to comply and compliance will be enforced.
In the meantime, the PCI DSS provides a standard for data security. ANY merchant, however small, has a responsibility to protect cardholder data and can be held liable if they fail to do so. We have discussed DUE DILIGENCE and its importance in limiting liability in the past. ANY small business which take no steps to comply with the PCI DSS standard is subjecting itself to greater levels of risk and liability,too.
