HIPAA News

Navisite's New Service to Help Companies Comply With New Payment Card Industry Standards

(Jan 15, 2008)-- NaviSite, provider of application services and managed hosting solutions, announced its comprehensive suite of services to address compliance requirements for the Payment Card Industry Data Security Standard (PCI DSS). NaviSite’s PCI services include Pre-Audit Assessment and Remediation Planning, support for its customers’ yearly PCI audits, and a fully-managed, proactively monitored hosting solution that addresses key PCI security requirements on a global level.

The PCI standard was developed by credit card companies to better protect the privacy of customers, payment card data, and merchant data. Merchants who accept credit cards as payment are subject to these standards, yet meeting them requires a technical environment that many merchants are not experienced with or may not have the resources to readily implement or maintain. With an important deadline for PCI compliance having been reached on December 31, 2007, NaviSite is setting the standard for PCI DSS compliance in a hosting environment.

As a trusted partner to companies that conduct business online, NaviSite’s comprehensive solutions support merchants who fall within all four compliance levels defined by PCI standard. NaviSite’s PCI DSS solutions include consulting services for pre-audit assessment/remediation and annual PCI audits; a PCI-compliant hosting infrastructure; and a complete end-to-end solution using NaviSite’s PCI-compliant Ecommerce solution coupled with the compliance hosting infrastructure. NaviSite’s PCI services are specifically designed to address PCI DSS requirements such as building and maintaining a secure network, protecting cardholder data, maintaining a vulnerability management program, implementing strong access control measures, regularly monitoring and testing networks, and maintaining an Information Security Policy. Consulting services are provided on a fixed fee or time and materials basis, depending upon client needs, and hosting services are delivered for a monthly recurring fee, based upon the size and complexity of the hosting environment.

"NaviSite recognized a significant need from our customers who were scrambling under tight deadlines to meet new PCI DSS requirements, especially from businesses who are constrained in terms of the resources and skill sets required to identify PCI compliance gaps and remediate," said Mark Clayman, Senior Vice President of Hosting, NaviSite. "Our PCI Compliance services are designed to provide end-to-end support to eliminate exposure to their business in this area, so that our customers are assured of a holistic solution from a single partner trusted in the online space."

NaviSite’s PCI DSS Compliance services are one in a suite of technology services the Company offers to address a broad range of regulatory requirements, including those set forth by Sarbanes-Oxley, Homeland Security, HIPAA, and others.

Share or bookmarklet this web page at: