RPE consultants certified by the PCI Security Standards Council (SSC) as a Qualified Integrator and Reseller (QIR) have the expertise and tools to assist retailers in installing and configuring validated Payment Application Data Security Standard (PA-DSS) payment applications to meet today’s strict compliances. Few consultants hold this distinction that requires extensive testing and continued training. RPE can help retailers mitigate the risk of a data breach due to improperly installed POS payment applications as a part of an overall POS implementation or upgrade.
The majority of merchant payment data breaches could be prevented by addressing three critical issues: insecure remote access, weak password practices and outdated and unpatched software. It is estimated that 80% of the breaches in level 4 merchants (companies with less than 1 million Visa or MasterCard® transactions and less than 20,000 eCommerce transactions per year) are due to improperly installed or configured payment applications.
Security breaches are a high risk for retailers, and every precaution must be taken to avoid cardholder data from being compromised. Breach or theft of data has immense impact on a merchant. From customers losing trust in the brand and reduced sales to being subjected to financial liabilities and penalties, potential vulnerabilities must be avoided so customers experience a trustworthy transaction.
In our continued efforts to be an industry leader in the competitive landscape of POS, this highly valued certification allows RPE’s consultants to securely access, install, maintain and support Payment Applications (and any dependent software), in accordance with the information provided by the application vendor in a PA-DSS implementation guide. The PCI SSC QIR program offers specialized data security training and certification to individuals that install, configure and/or support payment systems. Retailers can feel confident that RPE can provide the quality, reliability and consistency to implement a Payment Application that supports specific PCI DSS compliance.
PCI SSC Compliance
Effective January 31, 2017, merchants processing less than 1 million Visa or Master Card transactions and less than 20,000 eCommerce transactions per year are required to use a PCI-certified QIR professional to service and implement POS applications and terminals. The PCI Security Standards Council and RPE consultants are dedicated to helping merchants implement policies, technology and process to protect payment systems.