In this PCI DSS in Practice Case Study, Brazil Regional Engagement Board Member Cielo shares the challenge of dealing with legacy systems that did not have adequate controls to meet PCI DSS. The company recognized that training employees on security awareness and the support of senior management were essential to address these challenges.
- Integrating PCI DSS security best practices to all company projects make the environment more robust and resilient to failure
- Internal Security Assessor (ISA) training allowed Cielo’s security and development employees to have more in-depth knowledge of PCI DSS
- Partnering with PCI Qualified Security Assessors (QSAs) helps defer financial restraints related to merchant adoption of PCI DSS