CyberSource Corporation, a provider of electronic payment and risk management solutions, and Trustwave, a provider of on-demand data security and payment card industry compliance management solutions to businesses and organisations throughout the world, have announced a partnership to provide payment security solutions to Trustwave and CyberSource merchants in the United States and Europe.
Industry-leading payment security technologies and consulting services from both companies will help merchants streamline compliance validation with the Payment Card Industry Data Security Standard (PCI DSS), providing a complete set of payment security services for merchants.
PCI DSS is the payment card industry security requirement for entities that store, process or transmit cardholder data, and has been endorsed by all the major card brands -- Visa Inc., MasterCard Worldwide, Discover Network, American Express and JCB. The PCI DSS is a framework for the secure handling of cardholder data.
Recognized as CyberSource's preferred Qualified Security Assessor (QSA), Trustwave will offer CyberSource merchants a comprehensive compliance validation program, including its Risk Profiler, an online portal that defines data security risk associated with credit card acceptance practices. Trustwave's Risk Profiler is the first stage of its TrustKeeper on-demand compliance management program. TrustKeeper provides merchants with access to tools necessary to validate PCI DSS compliance including the Self-Assessment Questionnaire and quarterly network vulnerability scanning, and when necessary, remediation recommendations. Additionally, Trustwave will work with CyberSource Global Services to provide merchants application testing and other forensic services. These proprietary security solutions, along with Trustwave's managed security services, will help merchants facilitate and maintain ongoing PCI DSS compliance validation.
Similarly, Trustwave will offer its merchants CyberSource Secure Storage and Hosted Payment Acceptance solutions to reduce the scope of PCI DSS compliance by removing payment data storage and handling from the merchant environment. Trustwave will also work with CyberSource Global Services to provide security remediation to address gaps in PCI DSS compliance. For more information on these CyberSource services, go to http://www.cybersource.com/products_and_services/payment_security/.
"We believe joint marketing of the talents of our two companies will yield the most complete set of payment security services for e-commerce merchants," said David Glaser, vice president, CyberSource Global Services. "Both companies will be better able to serve the needs of their customers. We are delighted to be partnering with Trustwave, long one of the world's leaders in payment card security compliance management."
"This partnership really drives the talent of both organizations into a comprehensive solution that benefits the merchant," said Robert J. McCullen, chairman and CEO of Trustwave. "It's our goal to secure the payment environment to limit the opportunity for a data compromise and by teaming with CyberSource, we're able to provide our merchants a solution to limit data storage and handling."