Trustwave and First Data are working together to bring a new level of information security to millions of small and mid-sized enterprises (SMEs).
The companies will help businesses secure sensitive information, including payment card data, and comply with payment industry data security standards. The partnership unites two industry leaders – Trustwave, a leader in cloud-based information security and compliance services and First Data, a leader in payment technology and services solutions.
Businesses that use First Data payment processing services will have access to a unique, new solution delivered through Trustwave’s cloud-based TrustKeeper platform. The service will deliver security through cost effective, purpose-built, endpoint security and advanced e-commerce vulnerability monitoring while helping businesses achieve and maintain compliance with the Payment Card Industry Data Security Standard (PCI DSS). The core services will provide small businesses access to information security services designed to help protect them from malware and viruses, critical system changes, unauthorized devices, security misconfigurations and non-compliant payment card storage.
“Our collaboration demonstrates that PCI compliance is the ground floor for security and businesses need additional security services that help them go beyond PCI compliance and protect customer and payment card data from a compromise,” said Doug Klotnia, general manager of compliance & risk management at Trustwave. “This entirely new approach emphasizes security and protection of sensitive data while simplifying the complex compliance process.”
In addition to easy-to-use PCI DSS compliance tools, Trustwave and First Data plan to offer businesses:
Through the agreement, First Data customers can also access additional Trustwave Managed Security Services designed to help them address various information security threats while alleviating the pressures created by resource constraints, skills shortages, compliance requirements and the rapid adoption of new technologies.
“Criminals specifically focus on small businesses because they hold vast amounts of payment card information and security is not their core competency,” added Klotnia. “The Payment Card Industry Data Security Standards Council updates the PCI DSS every three years, however businesses should deploy additional security measures so that they can continuously stay ahead of the latest threats and protect all of their potential attack vectors.”
The PCI DSS is the payment card industry’s security requirement for entities that store, process, or transmit cardholder data, and has been endorsed by all the major credit card brands.