PCI DSS Payment Card Industry Data Security Standard

[andrew]

I have just been asked if we are PCI DSS compliant, I though it would be a good idea to post this so other people can see what we adhere to and help with

Build and Maintain a Secure Network.
Install and maintain a firewall configuration to protect cardholder data
Vantage can be used to interrogate the firewall logs.

Maintain a Vulnerability Management Program
Use and regularly update anti-virus software on all systems commonly affected by malware
Vantage can check for viral like activity on your mail servers and network and report unusual spikes.

Regularly Monitor and Test Networks
Track and monitor all access to network resources and cardholder data
Vantage can check windows event logs to show who has accessed systems with cardholder data, where they came from, how many times etc.

Regularly test security systems and processes
Vantage will routinely provide reports that can pinpoint anomalies in data transfers, email and event logs.

Maintain an Information Security Policy
Maintain a policy that addresses information security
Vantage can be used to validate your security and acceptable usage policies.