SOURCE: Society of Payment Security Professionals

July 31, 2008 14:00 ET

First QSAs Earn Certified Payment-Card Industry Security Manager (CPISM) Credential

PARK CITY, UT--(Marketwire - July 31, 2008) - Coalfire Systems recently invited the Society of Payment Security Professionals to proctor the Certified Payment-Card Industry Security Manager (CPISM) certification at their Louisville, CO headquarters. The event makes Coalfire Systems the first Qualified Security Assessment Company (QSAC) to put its Qualified Security Assessors (QSA) through the CPISM examination and certification process.

"The knowledge and skill validation that Coalfire Systems has gained from obtaining the rigorous CPISM certifications for its delivery staff perfectly complements the real world experience that we gain from engagement experience, helping our customers through complex compliance and security requirements," according to Matt Harrigan, Managing Director for the California Region. "By educating security professionals about the industry as a whole, and defining a common language for payment security, the CPISM levels the playing field between parties who are subject to compliance requirements, those who assess them, and those enforce them. Knowledge of risks and the justified controls required to protect transaction data is shared between all stakeholders."

The CPISM exam requires payment security professionals to demonstrate mastery of knowledge domains that have been identified by industry experts as being critical in the effective management of the security or compliance function within the Payment Card Industry. The domains have been validated by industry stakeholders including major card brands, banks, Qualified Security Assessors, merchants, and service providers to ensure relevance and consistency. The exam was developed using accepted educational and exam development criteria and has been rigorously tested for validity. Applicants were tested on subjects in the following domains:

(1) Payment-card industry structure
(2) Payment-card structure and data
(3) Payment-card transaction processing
(4) Compromise fraud statistics and trends
(5) Merchant risk analysis
(6) Laws and the regulatory environment
(7) Payment-card security programs
(8) Third party relationships

"Since June 2008, the Society of Payment Security Professionals has certified acquirers, processors, and QSAs as CPISMs," said Dr. Heather Mark, Executive Director, Society of Payment Security Professionals. "This rigorous certification process is designed to enable security professionals to demonstrate proficiency in the issues that impact the payment-card industry."

About the Society of Payment Security Professionals

The Society of Payment Security Professionals' objective is to provide individuals and organizations involved in payment security with an online community to share information, and access education and certification opportunities. Society members come from a variety of businesses including card brands, merchants, acquirers, ISOs, and more. Though their organizations may vary, they all share one purpose: to protect sensitive customer data using the most current, viable technologies and processes. The SPSP is managed by The Aegenis Group.

About Coalfire Systems, Inc.

Coalfire is an IT Governance and Compliance Management firm that specializes in the delivery audit and assessment services to the financial services, government and retail industries. The company serves merchants, service providers and other payment card stakeholders with services that include: risk assessment, policy development, security and compliance assessment and computer forensics. The company maintains offices in Colorado, Washington, New York and will soon open offices in California.

Contact Information