Payment Credit Industry compliance

Start Date: 
November, 2009

The credit card industry imposes a security standard called PCI DSS (Payment Card Industry Data Security Standard). Network Services and Business Operations staff were heavily involved in the design, implementation, verification, and security of a new environment used exclusively for cardholder data. Meeting PCI DSS requirements created the need for a separate network that included: additional servers, network gear, and other equipment used in a highly secure manner to protect cardholder data and meet PCI DSS requirements. PCI compliance also impacts business processes for all departments accepting credit cards as a method of payment. This project was completed October 1, 2010. The new environment requires ongoing maintance. Staff will continue to be involved as PCI DSS requirements are ammended and as new merchants are added to the campus community.