Real – PCI DSS security audit


Challenge

Real is one of the biggest retailers in Poland. They are a PCI DSS Level 1 merchant with over 6 million card operations per year. Taking care about security of their clients data, Real decided to go for PCI DSS (Payment Card Industry Data Security Standard) compliance. PCI DSS offers a robust, comprehensive as well as a mandatory standard for secure operation of card payment. At the first stage, they wanted to assess, what is status quo and how long would be their path to full PCI DSS compliance.


Solution

Cybercom is a company with certified QSA’s (Qualified Security Assessor), and has developed program of PCI DSS Compliance Path – supporting such companies as Real to go through compliance process step by step.

Cybercom QSA proceeded gap analysis in Polish Headquarter and two selected shops, basing on Real’s SAQ. Such project is not only an audit, it also has a big advisory value.

QSA helped Real in assessing level of their compliance and in catching general overview and knowledge about PCI DSS regulation.


Effect

Audit went very smoothly, without interruption of any of Real’s business processes. Confirmation about gap analysis was signed and handed over to bank and the acquirer of the client.

“Cybercom Poland proceeded PCI DSS pre-audit for Real during May 2013. The audit focused on verification of statements of Self-Assessment Query and was preparing Real for PCI DSS certification. Audit was accomplished without disturbing business continuity of Real, – within time, in the atmosphere of mutal respect and cooperation.

We can recommend cooperation with Cybercom regarding PCI DSS pre-audits”, Mariusz Humięcki, Process and Information Management Division Coordinator, Real.

Justyna Turkowska

Account Manager

Call contact
Email contact

Adam Wódz

IT Security Manager Cybercom Poland

Call contact
Email contact