Sysnet have amassed a wealth of experience advising banks on the many unique PCI DSS challenges that they face on a daily basis. For example one common issue is how to reduce the scope of the bank’s PCI DSS requirements. Banks often have multiple departments in multiple locations that share a single network. This maximises the scope of their PCI DSS requirement and gives rise to issues such as how to segregate networks. Another unique PCI DSS issue often faced by banks is that of overcoming legacy banking systems. Banks with legacy issues commonly perceive becoming PCI compliant to be a very costly process.
Banks also face staffing problems as they can have multiple departments, with large numbers of employees, which leads to the main problem of project management. An issue that all banks face on a daily basis, that can affect their PCI compliance, is their dealings with third party suppliers such as IT support companies and payment application providers who have not be certified as PCI compliant.
In addition to all of the above issues, International banks face further problems such as language and reporting issues, as head office may be located within one country with sister banks in many different countries.
Given the many and complex PCI DSS issues faced by banks, it is vital that the Qualified Security Assessors (QSAs), who a consultancy such as Sysnet provide, have an in-depth knowledge of the various systems and technology that a bank utilises on a daily basis. In addition, due to banks having complex infrastructures it is essential that QSA reports are well laid out and easy to understand.
We provide tailored packages to meet the specific needs of banks.
For further information on our PCI compliance services and Bank service packages, please contact one of our Sales representatives by calling +27 46 622 6123 or by completing our Online Enquiry Form or Request a Call Back Form on our website.
Also, please feel free to visit our resource centre for helpful articles, latest news, videos, wikis and useful links related to industry topics and terminology.