New free PCI DSS compliance tool from Acuity
Acuity launches free application to measure, monitor and report on PCI-DSS compliance
November 22nd 2011 – A free management application that allows businesses to measure, monitor and report on their compliance to PCI-DSS v2.0 payment card data security standards, has been launched by governance, risk and compliance (GRC) specialist Acuity. Available for download from the Acuity website www.acuityrm.com, the compliance software monitors progress against the six milestones in the PCI-DSS Prioritized Approach and will identify, assess, manage and report on risks to cardholder data. It will also track residual risk status in relation to performance of PCI controls and key metrics and provide visibility of information for auditors.
The Acuity PCI DSS tool reduces the time it takes to gather, collate and report on compliance; while also improving governance and reducing the cost of external audits and due diligence by always having up-to-date status information. And by mitigating the risk of incidents resulting from non-compliance, companies will also save costs associated with crisis responses, direct losses and reputational damage.
“As PCI requirements impact any business handling payment card information, there is critical need for a practical risk-based approach to PCI compliance based on easy-to-use, accessible tools that identify, log and report incidents or near misses and use this information to continually improve PCI compliance management processes,” said Simon Marvell, partner at Acuity Risk Management.
The free, single-user license of the PCI compliance tool is configured with detailed PCI DSS requirements and security assessment procedures. Used with a free version of Acuity’s STREAM Integrated Risk Manager software, it can be used to fully automate PCI compliance management functions, recording and maintaining the current status against PCI DSS and using sophisticated management reporting to view current and historical status with trend analysis. STREAM can be implemented as an Enterprise GRC solution for specific management systems, such as information risk, IT governance and business continuity.
Further information, including a video demonstration is available at www.acuityrm.com/store/PCI-application
Acuity Risk Management LLP is based in London and was formed in 2005 to provide integrated Enterprise risk management and compliance software solutions and services. Its popular software solution, STREAM Integrated Risk Manager, has been adopted by major corporations and government agencies for a range of risk and compliance applications, including information security, business continuity, health & security, environmental and operational risk management. In 2011, Acuity changed its licensing strategy and made the single-user editions of STREAM and other tools available as a free download from its website www.acuityrm.com for business purposes.