We Continue Strengthening and Developing Our PCI Area
Our team remains fully committed to offering the most cutting-edge services, and this time we want to highlight the outstanding team that manages the PCI area, allowing us to provide maximum security to all clients who operate with payment methods and fight against fraud.
At BOTECH, we continue working to offer the most comprehensive services and to have the most expert team! On this occasion, we are pleased to announce the incorporation of Ari Lima as a PCI Consultant, who will play a key role in boosting the PCI services offered by the company.
Lima, a Computer Systems Engineer, holds CISSP, CISA, and CRISC certifications, and has knowledge of security standards such as PCI DSS, PCI PIN, ISO 27001, Business Continuity, ATM security, and more.
With nearly two decades of professional development in information technology, in recent years he has held CISO positions in banking and has worked as a security consultant and IT auditor for many Big4 companies, giving him extensive experience in different areas.
But Ari is not the only one reinforcing this area. Hugo Yepes joins as a PCI Consultant and will be the point of contact within the company for organizations that must comply with PCI DSS certification, playing a key role in enhancing the service. Yepes joins the company with the goal of supporting the growth of the PCI DSS department, one of the areas in which BOTECH is a benchmark, and continuing to expand its services.
We would also like to congratulate our expert Alex Barrera for his effort and expertise in this field, where he continues training constantly, making him a reference in PCI matters.
Every day, countless financial operations are carried out online: banking transactions, online purchases, and payments. All these actions generate a large amount of confidential data that has become a target of cybercrime and must be protected. It does not matter the business area or size. If a company processes, stores, or transmits cardholder data, it must comply with the PCI DSS standard.
So, if you need to ensure data protection and security in online financial transactions, minimize fraud, and convey trust, ask us how to do it. We will be happy to help you and make the process smooth and simple.
If your company is certified in version 3.2.1 and you want to transition to the new version 4.0, contact us and we will explain how to proceed.
We hope to keep sharing new updates, both from within our company and from our partners, that help us continue offering the most advanced services. Stay tuned!
To achieve PCI DSS certification, your business must meet a series of requirements (twelve, to be precise) grouped under the following objectives:
As you can see, this is not a one-time task—it must be continuous, hence the annual review—because cyberthreats are constantly evolving. It is essential to remember that it is not just about obtaining the certificate, but about providing the highest possible security to your customers.
A clear example of these cyberattacks is the practice known as web skimming, which increased by 150% between May and November 2021. It consists of installing malware on e-commerce pages to steal credit and debit card data.
You should also know that there are different certification levels, since not all businesses process the same number of transactions. It is most common for new online stores to begin with PCI DSS Level 4 Certification, which applies to organizations processing fewer than 20,000 online transactions per year.
The remaining levels are:
In short, if you plan to launch an e-commerce business that accepts card payments, you must ensure that your business meets the requirements of the PCI DSS standard. Only then will transactions be secure and inspire trust among your customers. If you need more information, do not hesitate to contact our specialists.