Customers: Online payment of services system A3
Contractors: Andek Product: Projects of external audit of IT and security (in tch PCI DSS and SUIB)Project date: 2015/03 - 2015/07
|
On September 28, 2015 it became known of compliance of the environment of data processing of payment cards of A 3 LLC to requirements of the PCI DSS 3.1 standard. Certification audit was booked by company "Andek"[1].
Project Tasks
For payment processing using bank cards of international payment systems of MasterCard and Visa, And 3 company requirements of the standard of security of the industry of the PCI DSS payment cards need annual confirmation of conformity. The Andek company was To perform work elected.
Screenshot of the homepage of And 3 service (2015)
Project Progress
In course of execution of the project specialists of Andek company updated a scope of requirements of the PCI DSS standard, developed standards of safe configuring of systems in a scope of PCI DSS, updated current and developed additional regulating documents of And 3 company in the field of information security support. Besides, complex testing of a possibility of penetration into the environment of data processing of the payment cards "And 3" was held.
Project Results
According to the results of certification audit the staff of Andek company confirmed compliance of And 3 company to requirements of the PCI DSS standard.
Sergey Zemlyansky, the deputy CEO of A 3 LLC, noted: "Regular passing of the audit directed to check of compliance to requirements of PCI DSS allows to provide continual improvement of internal operating rooms and technical control procedures, to be convinced of the high level of security of the processed these payment cards and also to increase the level of a maturity of the company in general".