Trusted by some of the world's biggest brands

  • Concerto's PCI Package contains all of the necessary components for a fully-managed PCI-compliant platform.
  • Concerto ensures datacenter compliance plus policies, practices and reporting regarding the handling of data.
  • Secure customer payment card data and deliver the necessary uptime for the heaviest web traffic and busiest shopping seasons.



PCI DSS compliance and SAQ A, B, C & D

 Merchants processing credit cards must pass an annual assessment of PCI DSS compliance.
 Each SAQ addresses different circumstances depending on how a company stores, processes or transmits cardholder data.
 The assessment type results in a standard of quality (SAQ) in one of four different categories: A, B, C and D.
 SAQ D encompasses the full set of over 200 requirements and covers the entirety of the PCI DSS.

The Concerto Cloud Services PCI Package

  • Application Firewall and Hardening
  • Security Information and Event Management (SIEM)
  • Syslog (Logging)
  • Two-factor authentication
  • Encryption: FIPS-140-2
  • Internet Load Balancing
  • Dedicated Spotlight Server
  • Patching of the required infrastructure and operating system components
  • Quarterly Vulnerability Tests (four per year) and one Penetration Test per year with a report to the customer of the findings