In April 2000, Visa announced the launch of its Cardholder Information Security Program (CISP). CISP defines a standard of due care for securing Visa cardholder data, wherever it is located. CISP compliance has been required of all entities storing, processing, or transmitting Visa cardholder data. Members must comply with CISP and are responsible for ensuring the compliance of their merchants and Agents—whether they support Issuing or Acquiring activity—for all payment channels, including retail (brick-and-mortar), mail/telephone-order, and e-commerce.

SecurityExpressions for CISP provides an efficient, effective means of achieving compliance with several requirements outlined in the Cardholder Information Security Program.

SecurityExpressions for CISP allows you to execute a 4 step procedure that will take you through the primary requirements that are addressed through the use of SecurityExpressions.

	Audit Windows 2000 and Solaris systems to ensure they comply to CISP Best Practices
	Gather security information for external assessors
	Ensure that all systems have the latest patches installed
	Optional: Audit and lock down IIS against Microsoft guidelines

Request an Evaluation
Pedestal Software is offering a 10 day evaluation version of SecurityExpressions for CISP. This version will allow you to complete Step 1 of the process.