Jet Infosystems upgraded the cybersecurity system of Zenit bank according to requirements of PCI DSS

The Zenit bank and Jet Infosystems company announced project completion on upgrade of an information security system of bank according to requirements of the PCI DSS standard.

Zenit has own processing center for transaction processing on the international payment cards. One of the most important tasks of bank is ensuring safety of these users, special attention is paid to questions of security of technology transactions and processes of management of the information security (IS), says Jet Infosystems company. The processing support of holders of cards and partner banks given by bank should be performed in strict accordance with requirements of cybersecurity imposed by international payment systems, including requirements of the PCI DSS standard.

The contractor of the project on upgrade of the cybersecurity system according to requirements of the PCI DSS standard selected Jet Infosystems company. As noted, the company successfully implements several years similar projects and has the statuses Approved Scanning Vendors (ASV) and Qualified Security Assessor (QSA) that allows it to render all range of services in the field of protection of payment systems.

The project lasted one year and included several stages. Originally specialists of integrator executed inspection of infrastructure of bank, gave conformity assessment to requirements of the standard and made recommendations about accomplishment of these requirements and also the detailed actions plan about preparation for certification.

The most large-scale and long was the second stage of the project during which technical solution was selected, complexes of protection of payment system are implemented, the packet of organizational documentation is developed and the providing Information Security processes required by the standard are started. For check of reliability of the implemented information security tools scanning and testing for a possibility of penetration into a system was held.

Carrying out certification audit by specialists of Jet Infosystems company became the final stage. The certificate received by Zenit bank by its results is confirmation of quality jointly of the done work. The report on results of audit was sent to VISA and MasterCard which confirmed the status of compliance of Zenit bank to the international standard PCI DSS.

"Simultaneous accounting of requirements not only PCI DSS, but also Federal Law No. 152 "About personal data" and service station of BR IBBS was feature of this project — Evgeny Akimov, the associate director of Information Security Center of Jet Infosystems company told. — At the expense of it it was succeeded to avoid duplication of similar technical and organizational solutions that significantly reduced the total amount of the spent resources for accomplishment of regulatory requirements. So far the bank confirmed compliance to requirements of the international standard PCI DSS, completion of the similar works connected with the domestic legislation is planned further".