The Payment Card Industry Data Security Standard (PCI DSS) is a worldwide information security standard defined by the Payment Card Industry Security Standards Council (PCI SSC).The standard was created to help payment card industry organizations that process card payments prevent credit card fraud through increased controls around data and its exposure to compromise.
The standard applies to all organisations that hold, process, or transmit cardholder information from any of the card brands: American Express, VISA, MasterCard etc. Validation of compliance can be performed either internally or externally, depending on the volume of card transactions the organization is handling, but regardless of the size of the organization, compliance must be assessed annually. Organisations handling large volumes of transactions must have their compliance assessed by an independent assessor known as a Qualified Security Assessor (QSA).
Digital Jewels Limited, today the only Professional Services Firm in Africa to become accredited to the global standard for Information Security, ISO27001, recently added another feather to its cap when it was listed by the Payment Card Security Standards Council as a Qualified Security Assessor (QSA) for the Payment Card Industry Data Security Standard (PCIDSS). The listing indicated the Firm’s jurisdiction to cover Central and Middle East Asia and Africa.