Fortrex receives Visa authorisation

Fortrex, an expert in the Payment Card Industry Data Security Standard (PCI-DSS), has once again been authorized for the third consecutive year by Visa USA as a Qualified Data Security Company (QDSC) to provide Merchants, Service Providers, and Payment Gateways with PCI-DSS Report on Compliance assessments.

  0 Be the first to comment

External

This content is provided by an external author without editing by Finextra. It expresses the views and opinions of the author.

In addition, Fortrex has also been authorized by Visa USA as a Qualified Payment Application Security Company (QPASC) for performing Payment Application Best Practices (PABP) reviews in accordance with PCI-DSS. "Having done Web Application and SDLC reviews for a better part of a decade, this was simply the right business to be in. Our security engineers have very diverse backgrounds, once programmers, DBAs and pen testers - now they make world- class auditors," says Robert Burnett, Sr. Security Engineer and PABP auditor with Fortrex.

To meet the high-level qualification requirements, Fortrex had to:

  • Apply for qualification in the program
  • Provide documentation of financial stability, technical capability, and industry experience
  • Certify individual employees to perform the assessments
  • Execute an agreement with Visa governing performance

    This month Fortrex formally announced a dedicated team of Qualified Data Security Professionals (QDSP) to keep up with the heavy demands from its national clientele. "By having this dedicated team we are able to quickly deploy Visa certified resources across the country, keep up project deadlines, and exceed customers' expectations," says Chris Konrad, SVP of Client Services with Fortrex.

    When consumers offer their credit card at the point of sale (POS), over the web, on the telephone, or through snail mail, they want to ensure that their information is safe and reliable. That's why Visa USA has instituted the Cardholder Information Security Program (CISP). Mandated since June 2001, CISP is intended to protect Visa cardholder data - wherever it resides - ensuring that members, merchants, and service providers maintain the highest level of security.

    In 2004, the CISP requirements were incorporated into an industry standard known as Payment Card Industry Data Security Standard resulting from collaboration between Visa and MasterCard to create common industry security requirements. Visa USA maintains CISP as the managing program for data security compliance endorsing the PCI Data Security Standard.

  • Sponsored [Webinar] 2025 Fraud Trends: Synthetic Identity, AI and Incoming Mandates

    Related Company

    Keywords

    Comments: (0)

    [On-Demand Webinar] Solving the KYC challenge with end-to-end processesFinextra Promoted[On-Demand Webinar] Solving the KYC challenge with end-to-end processes