OneNeck® IT Solutions has completed the Payment Card Industry (PCI) Data Security Standard (DSS) version 3.2.1 Attestation of Compliance for colocation services at their top-tier data centers in Arizona, Colorado, Iowa, Minnesota, Oregon, and Wisconsin.
Each year, OneNeck requests an independent PCI Qualified Security Assessor (QSA) firm to perform the PCI DSS assessment of their colocation services. Again this year, Schellman & Company, LLC performed the validation. All merchants who outsource the transmission, processing or storage of payment card data to a third-party are required, by the PCI Security Standards Council, to verify the provider adheres to the standard.
“Achieving third-party validation of PCI DSS assures customers we have the security controls in place to protect their data,” stated Katie McCullough, chief information security officer at OneNeck. “This validation also substantiates that we are positioned to securely host customer environments in our top-tier colocation facilities and establishes we have the ability to meet specific cloud and managed services deliverables in compliance with other PCI DSS controls.”
Moving forward, OneNeck will be completing the PCI DSS validation in the Fall in order to ensure availability for clients who rely on OneNeck to meet their own year-end audit requirements. In addition to PCI DSS validation, OneNeck also regularly submits itself to other third-party reviews. The company recently completed ISO/IEC 27001:2013 certification and SSAE 18 examinations.