PCI DSS-Compliance Ensures Terremark's Security for Cloud-based Transactions

When it comes to global cloud-enabled data centers, Terremark, a Verizon (News - Alert) company, offers clients enterprise-class IT services related to the payment card industry. These include IT deployments as well as advanced infrastructure and managed service offerings. In a sense, Terremark offers the ideal data center which can consist of a mix of real resources, virtualized and cloud all of which are stitched together to facilitate complete transactions within a company. Along with cloud adoption comes the need for enhanced security and this is particularly true when it applies to financial transactions online.

As evidence of Terremark’s commitment and coverage, the company has announced that six of its cloud-enabled data centers are compliant with the Payment Card Industry Data Security Standard (PCI (News - Alert) DSS) version 2.0 and each have received official certification. It’s interesting to note that today’s IT departments bear only a superficial resemblance to predecessors. The consumerization of IT, social networks, cloud computing, to name a few, have all helped to redefine IT’s place within an organization. Monitoring security management, policies, procedures, network architecture, software design and other critical protective measures is a crucial IT practice that’s fundamental to business-consumer transactions.

In order to meet those standards, Terremark underwent stringent third-party qualified security assessment to achieve PCI DSS certification. With worldwide cloud provisioning facilities and centers, PCI compliancy represents the gold standard for all companies who deliver secure payment-card services. According to Nelson Fonseca, president of Terremark, “Terremark’s track record of achieving compliance with highly regarded industry standards such as PCI DSS continues to be a key differentiator for Verizon in the enterprise and federal markets.”

The PCI DSS is now actively maintained by the PCI Security Standards Council, and represents a multifaceted standard that includes requirements for security management, policies, procedures, network architecture, software design and other critical protective measures. It’s important to note that when meeting key aspects of PCI compliancy, companies should be careful not to separate compliance and security. In addition, it’s crucial to build security into processes, not onto them as well as to treat compliance as a continuous process. In the case of Terremark, the company has achieved other critical certifications, such as ISO/IEC 27001:2005 and SAS (News - Alert) 70 Type II.

Want to learn more about the latest in communications and technology? Then be sure to attend ITEXPO East 2012, happening now Jan. 31-Feb. 3 2012, in Miami, FL. ITEXPO (News - Alert) offers an educational program to help corporate decision makers select the right IP-based voice, video, fax and unified communications solutions to improve their operations. It's also where service providers learn how to profitably roll out the services their subscribers are clamoring for – and where resellers can learn about new growth opportunities. To register, click here.

Stay in touch with everything happening at ITEXPO. Follow us on Twitter.