|By Elizabeth White||
|December 4, 2013 08:00 AM EST||
"Validation of our PCI DSS compliance ensures that our API Management customers can leverage our enterprise-class cloud platform to ensure the security and availability of their applications and data, as well as help meet their own requirements for PCI compliance in their API Programs", said Alistair Farquharson, CTO of SOA Software. "The successful completion of these audits is part of our continued commitment to maintaining a well-governed, high-quality IT service environment."
SOA Software on Monday announced that its API Management solution and cloud offering have been validated for compliance with version 2.0 of the Payment Card Industry Data Security Standard (PCI DSS). SOA Software recently underwent a series of rigorous audits by an independent Quality Security Assessor (QSA) to ensure that it met best practices and security controls needed to keep sensitive data secure during transit, processing and storage. This makes SOA Software one of the few API Management solutions able to offer a full end-to-end PCI DSS service based on pre-certified components.
SOA Software is now an 'Approved Service Provider' for major credit card brands. Its extensive, secure network coupled with 24/7 technical support to minimize risks that can compromise sensitive data security satisfies PCI's criteria for a compliant network. As part of its standard security measures, the SOA Software PCI-Compliant Cloud employs multi-layer protection and data access limitations. It also monitors, defends against and mitigates cyber assaults and threats. Features include antivirus management, vulnerability scanning, a secure audit trail and resource tracking along with round-the-clock technical support by comprehensively trained SOA Software staff to maximize uptime and availability and enhance security.
SOA Software's experience with the PCI DSS certifications allows it to advise customers on the most appropriate security best practices, irrespective of the industry that they are in. SOA Software's counsel can help ensure that APIs are built on a compliant platform and extended in a compliant fashion, required tasks are dealt with by the most appropriate parties and nothing gets overlooked as enterprises roll out their APIs. PCI DSS is a proprietary information security standard for organizations that handle cardholder information for the major debit, credit, prepaid, e-purse, ATM and POS cards.
For more information on SOA Software's API Management solution, click here.