Medium & Large Business

Your Requirements

• Remote and automated PCI scan and Self Assessment Questionnaire (SAQ) by the use of Qualysguard

Service Description

All merchants are required to complete an annual Self-Assessment Questionnaire (SAQ) based on the PCI Data Security Standards.  Also if you are a merchant or service provider with devices facing the internet you must undergo a vulnerability scan once every quarter.

TELUS is pleased to offer online services for completing the SAQ,  and performing automated vulnerability scanning through our partnership with Qualys. 

Offerings

• Online PCI Portal 
• Qualys Telephone Service
• PCI External Scanning

Your Requirements

• On-site PCI Assessment

Service Description

We are a Canadian/National Qualified Security Assessor (QSA) that can help you achieve and maintain PCI compliance in a cost-effective manner. We have QSAs all across Canada to assist in on-site PCI assessments.

Offerings

• Service are offered in English and French
• Annual subscription for unlimited external Scans
• On-site Assessment, Testing and Gap Analysis
• Remediation and Action Plan
• Successful Report on Compliance (ROC)
• PCI Certificate

Your Requirements

• Guidance through the compliance process
• Assistance with remediation
• Keeping the compliance status over time

Service Description

If gaps are detected during the PCI compliance assessment, the TELUS team of security professionals provide expert security consulting to remedy the problems identified.  They can also help you maintain your PCI compliance status over time.

Our TELUS PCI Compliance services provide merchants and service providers with support to assist in interpreting the assessment results, and determining cost effective ways to become and maintain PCI compliant.

We also offer a PCI Action Plan, in which we identify and recommend the steps to  take to help them become compliant quickly and cost effectively. Action Plans are uniquely tailored based on the results of the PCI compliance assessment.  You can show the plan to your acquiring bank as proof of being on the path to become PCI compliant. 

Offerings

• Remediation Plan preparation, communication and execution
• Identification of required  products and services
• Implementation services

Your Requirements

• Have payment application compliant with the Payment Application Data Security Standard (PA-DSS)
• Payment Application Qualifed Security Assessor (PA-QSA) assistance 
• Support in remediation

Service Description

Software vendors that develop payment applications to be sold, distributed or licensed to third parties are subject to the Payment Application Data Security Standard (PA-DSS) requirements.

The aim of the standard is to help develop secure payment applications do not store prohibited data, such as full magnetic stripe, CVV2 or PIN data, and ensure the applications support compliance with the PCI DSS.

TELUS is a Payment Application Qualified Security Assessor (PA-QSA). TELUS can assess your applications, provide recommendations,  and assist you in the remediation process to make your payment applications PA-DSS compliance and get certified.

Offerings

• On-site PA-DSS Assessment, Testing and Gap Analysis
• Remediation and Action Plan
• Successful Report on Validation (ROV)
• PA-DSS Certificate