Connectria Hosting Receives PCI DSS 3.2 Certification
Independent Audit Verifies PCI Compliance
St. Louis, MO – February 7, 2017 – Connectria Hosting, a global cloud hosting company and founder of the No Jerks Allowed® movement, today announced it has successfully completed its PCI audit and received certification of compliance for PCI DSS 3.2.
The Payment Card Industry Data Security Standard (PCI DSS) provides a baseline of technical and operational requirements designed to protect account data and applies to all entities involved in payment card processing—including merchants, processors, acquirers, issuers, and service providers.
Connectria undergoes an annual audit for PCI DSS compliance as standards and requirements evolve. PCI DSS 3.2 introduced several new requirements including multi-factor authentication for access to the cardholder data environment, Designated Entities Supplemental Validation (DESV) to ensure ongoing security efforts to protect payments and additional service provider controls such as maintaining documented descriptions of cryptographic architectures, reporting on failures of critical security control systems and executive responsibility for PCI DSS compliance.
KirkpatrickPrice, a licensed CPA and PCI QSA firm, performed the audit and appropriate testing of Connectria’s controls that are relevant to the storing and transmitting of information from credit, debit, or other payment cards. In accordance with the PCI Security Standards Council, KirkpatrickPrice’s Qualified Security Assessors validated Connectria’s PCI compliance.
“Many of Connectria’s clients rely on their systems to process or store sensitive data and protect information,” said Joseph Kirkpatrick, Managing Partner with KirkpatrickPrice. “As a result, Connectria has implemented best practice controls demanded by their customers to address information security and compliance risks. Our third-party audit validates these controls and the tests we perform provide assurance regarding the services provided by Connectria.”
“Connectria is committed toward ongoing compliance with the PCI DSS requirements,” noted Steve Grzybinski, Connectria Director of Security, Compliance & Technology. “Many of our customers rely upon Connectria’s world-class 24/7 Security Operations Center for secure hosting of their eCommerce applications and protection of cardholder data according to industry standards. We are pleased once again to have received our PCI DSS certification.”
KirkpatrickPrice is a licensed CPA firm, registered with the Public Company Accounting Oversight Board. By specializing in Service Organization Control Reports (SSAE, SOC 1, SOC 2, SOC 3), security audit services and compliance issues, the firm offers efficient expertise with relevant skills and qualifications for engagements governed by the AICPA and other data security best practices. The firm’s employees are certified with CPA, CISA, CISSP and other certifications critical to the audit process. www.kirkpatrickprice.com.