noris network AG Successfully Certified According to PCI DSS

12. December 2019

usd AG confirms secure handling of credit card data in data centers

Whether for start-ups or global players – a PCI certification project can pose a major challenge to any business. This makes it all the more enjoyable for us to look back on the success we have achieved together with our clients. After all, nothing provides better insights into a PCI assessment than the voices of the people involved.

The Nuremberg IT service provider noris network AG was re-certified according to PCI DSS 3.2.1 as a housing provider by usd AG in October. Within the scope of the certification, usd assessors assessed and confirmed compliance with both physical and organizational security requirements for the handling of credit card data in noris network data centers. Customers of noris network’s housing services will therefore face significantly simplified processes for validating their own PCI DSS compliance.

Manfred Ferstl, Managing Consultant PCI Security Services at usd, accompanied the PCI DSS certification of noris network AG this year for the third time in a row: “For us as a security partner, it is always a great pleasure to see a client being committed to a strong security level in their company that goes beyond a successful certification. The noris network data centers are a very good example of this. The security measures implemented there exceed even the strict requirements of the PCI standard for housing providers.”

Gerrit Schröder, Information Security and Risk Officer, Governance & Standards, noris network AG, reaffirms the high significance of data security in his company: “Our customers choose noris network as their operator for their critical systems and infrastructure, because with us they have a service provider that attaches great importance to data integrity, security and availability. In order to maintain this trust and to be able to offer customers the best possible services throughout, noris network AG decided in 2017 to certify its co-location and housing services in accordance with the PCI DSS standard. This guarantees all our customers a very high level of security on which they can build and provide their services. Proof of compliance with PCI DSS requirements is particularly important for our customers in the credit card processing sector.

With usd, we have found a partner who supported us during the initial introduction of PCI DSS and continues to support us in assessments. Our cooperation to date has been characterized by a constructive and cooperative approach. I hope that usd was able to experience how data centers can be operated securely to fulfil the requirements of demanding customers”.

Raphael Heinlein, Senior Consultant PCI Security Services der usd, can only confirm this assessment: “For us as IT security consultants, insights into the professional operation of state-of-the-art data centers are always exciting. Here even we can sometimes learn something new about current trends and practical solutions in data center security. The cooperation with noris network AG is always a pleasure and a real benefit for both sides, both on a professional and on a personal level”.

David Ziegler, Security Manager, Datacenter Operations, noris network AG, draws a positive balance from the cooperation with usd: “With usd AG, we have a strong partner at our side who helps us analyze and further develop the special challenges that a PCI DSS certification brings with it. According to the motto “Plan-Do-Check-Act” (PDCA cycle). This enables us to realize our set goals and protect the data in the noris network data centers from misuse and theft. No other certifier deals with the security of credit card data in as much detail as usd AG. “

Also interesting:

DORA Countdown: One Month Left Until the Deadline

DORA Countdown: One Month Left Until the Deadline

DORA, the Digital Operational Resilience Act, will fully apply as of 17 January 2025. We have summarized everything you need to know about the EU regulation, preparation and best practices from our news blog.

Sunset of PCI DSS v4.0 on 31 December 2024: Get Ready!

Sunset of PCI DSS v4.0 on 31 December 2024: Get Ready!

PCI DSS v4.0: In March 2024, version 4.0 of the Payment Card Industry Data Security Standard became mandatory after a two-year transition phase. Just a few months later, version 4.0.1 was released as a minor update of the standard, which will become mandatory on...

Top 3 Vulnerabilities in SSO Pentests

Top 3 Vulnerabilities in SSO Pentests

During their penetration tests (pentests), our security analysts at usd HeroLab repeatedly uncover vulnerabilities that pose significant risks to corporate security. They increasingly encounter the same vulnerabilities. Our blog series "Top 3 Vulnerabilities" presents...

Categories

Categories