Request for Proposal For: PCD-DSS Level 1 Service Provider St. Andrew's Parish Parks & Playground Commission Bid Deadline: August 17, 2015 at 12 Noon
|
|
- Candace Jordan
- 8 years ago
- Views:
Transcription
1 Request for Proposal For: PCD-DSS Level 1 Service Provider St. Andrew's Parish Parks & Playground Commission Bid Deadline: August 17, 2015 at 12 Noon
2 Request for Proposal P a g e 2 Table of Contents 1. Confidentiality Statement Submission Details...3 Pre-Submission Questions...3 Submission Deadlines...3 Submission Delivery Address...4 Submission Requirement Questions...4 Electronic Submissions Introduction and Executive Summary Business Overview & Background Scope of Work and Technical Requirements...5 General...5 Required Services...5 Scope and Methodology...5 Deliverables...6 Project Management Assumptions & Constraints Pricing / Monthly Billing Proposal Requirements Selection Criteria Process Schedule...8
3 Request for Proposal P a g e 3 1. Confidentiality Statement This document, and any attachments thereto, regardless of form or medium, is intended only for use by the addressee(s) and may contain legally privileged and/or confidential, copyrighted, trademarked, patented or otherwise restricted information viewable by the intended recipient only. If you are not the intended recipient of this document (or the person responsible for delivering this document to the intended recipient), you are hereby notified that any dissemination, distribution, printing or copying of this document, and any attachment thereto, is strictly prohibited and violation of this condition may infringe upon copyright, trademark, patent, or other laws protecting proprietary and, or, intellectual property. In no event shall this document be delivered to anyone other than the intended recipient or original sender and violation may be considered a breach of law fully punishable by various domestic and international courts. If you have received this document in error, please respond to the originator of this message or him/her at the address below and permanently delete and/or shred the original and any copies and any electronic form this document, and any attachments thereto and do not disseminate further. Thank you for your consideration, Please respond to financedirector@standrewsparks.com with any questions or concerns. 2. Submission Details Pre-Submission Questions Prior to submitting your response, you may contact the following person if you have any questions or require clarification on any topic or the scope of work covered in this Request for Proposal: Susan Klugman Finance Director Tel: ext financedirector@standrewsparks.com Submission Deadlines All submissions in response to this request must be submitted on paper and delivered to our office, as stated below, no later than: Friday, August 17, 2015 No later than 12 Noon Proposals must be submitted in a plainly marked and sealed envelop with the bidder's name and addressed Attn: PCI-DSS Level 1 Service Provider.
4 Request for Proposal P a g e 4 Any submission received at the designated location after the required time and date shall be considered late and non-responsive. Late proposals be rejected and will not be evaluated for award. Submission Delivery Address The delivery address to be used for all submissions is: 1095 Playground Rd Charleston, SC Attn: PCI-DSS Level 1 Service Provider Submission Requirement Questions You may contact the following person if you have any questions regarding the RFP submission requirements: Susan Klugman Finance Director Tel: ext financedirector@standrewsparks.com Electronic Submissions Electronic submissions in response to this Request for Proposal will not be accepted. 3. Introduction and Executive Summary (StAPPC) is currently seeking proposals from qualified Providers who will provide PCI-DSS audit and compliance services etrak-plus, a parks and recreation management software. 4. Business Overview & Background St. Andrew's Parish Parks & Playground Commission was created by the General Assembly of the State of South Carolina in In addition to three public parks and a full service fitness center, the Commission owns, manages and operates a server based, real time recreation management software system, etrak-plus, with clients in 15 states comprising of state, county and local parks and recreation departments.
5 Request for Proposal P a g e 5 5. Scope of Work and Technical Requirements General St. Andrew's Parish Parks & Playground Commission seeks to contract with a qualified supplier to prepare and submit a proposal to furnish professional consulting services related to payment card industry data security standards ( PCI DSS ) to be performed by a qualified security assessor and related payment card industry compliance services. Required Services ASV Services o PCI DSS Quarterly Scanning and Internal Network Vulnerability Assessment o Monthly Penetration Testing QSA Services o PCI DSS Self-Assessment Questionnaire Training, Support and Review o PCI QSA Services o Security Policy Review as it relates to PCI Compliance o Onsite Data Security Audits o Online Monitoring and Tracking of Compliance Status of Each Account per Merchant ID o Online Detailed Recommendations on Possible Solutions to Specific Non- Compliant Accounts per Merchant ID Scope and Methodology Include detailed testing procedures and technical details for these items: DIAL-IN / RAS SECURITY TESTING DMZ OR NETWORK ARCHITECTURE DESIGNS / REVIEWS VIRTUAL INFRASTRUCTURE SECURITY ASSESSMENT SERVER CONFIGURATION REVIEWS FIREWALL AND ROUTER CONFIGURATION REVIEWS VPN CONFIGURATION REVIEWS SOCIAL ENGINEERING ASSESSMENTS PHYSICAL SECURITY REVIEWS SOFTWARE SOURCE CODE REVIEWS APPLICATION THREAT MODELING AND DESIGN REVIEWS INFORMATION SECURITY POLICY AND PROCEDURE DEVELOPMENT OR REVIEW INFORMATION SECURITY RISK ASSESSMENT SECURITY AWARENESS PROGRAM DEVELOPMENT OR REVIEW INCIDENT RESPONSE PROGRAM DEVELOPMENT OR REVIEW SECURE SDLC PROGRAM DEVELOPMENT OR REVIEW PCI REPORT ON COMPLIANCE ASSESSMENT OR GAP ANALYSIS
6 Request for Proposal P a g e 6 FORENSICS REVIEW AND REPORTING PCI COMPLIANCE TRAINING (ONSITE AND ONLINE) PCI POLICIES AND CREDIT CARD PROCEDURE DEVELOPMENT OR REVIEW ENDPOINT PROTECTION REVIEW TWO FACTOR AUTHENTICATION SYSTEM WIDE REVIEW AND RECOMMENDATIONS Deliverables Include descriptions of the reports used to summarize and provide detailed information on security risk, vulnerabilities, and the necessary countermeasures and recommended corrective actions. Include sample reports as attachments to the proposal to provide an example of the types of reports that will be provided for this work. Project Management & Implementation Include the method and approach used to manage the overall project and client correspondence. Briefly describe how the engagement proceeds from beginning to end. Include a description and timeline for program implementation including any issues which may restrict or hamper a successful implementation. 6. Assumptions & Constraints I. The VENDOR shall assume responsibility for meeting project deadlines regardless of weather and shipping delays. II. The VENDOR will be required to comply with all applicable laws for the State of South Carolina including but not limited to Labor Laws, Wages and Workers Compensation. III. The VENDOR must be acquainted with the nature and location of the project; the local conditions, the condition of the facilities; and the character of equipment and facilities needed before and during the performance of the work. IV. The VENDOR is responsible for procuring all Federal, State and local permits and licenses, becoming familiar with, following and meeting all regulations and standards including those of South Carolina Department of Health and Environmental Control (DHEC) and Federal Occupational Health and Safety Administration (OSHA) and the American with Disabilities Act (ADA); paying all charges, fees and taxes; and giving and posting all notices necessary in performing the work. VENDOR shall supply a list of sub-contractors involved in the project. VENDOR shall show proof that all sub contractors are licensed and bonded. V. The VENDOR must be prepared to provide services beginning September 30, 2015.
7 Request for Proposal P a g e 7 VI. The VENDOR must be available to attend (either in person or via teleconference) the initial project meeting on Monday, August 31, 2015 at 9:00 am EDT. 7. Pricing / Monthly Billing I. Pricing shall be quoted on a three (3) year contract initial term, and include an option to extend for an additional two (2) year term. This shall be specified in the contract and purchase order. Maximum duration of the agreement, including all extensions, shall be five (5) years. 8. Proposal Requirements I. Proposal Cover Statement a. The RFP Response must include a cover letter with original signature of the authorized Vendor Representative, which must be attached to the original RFP response and must precede the narrative. II. Table of Contents RFP a. Please provide a table of contents for your RFP response. III. Organization s Narrative: a. State your organization s name (include parent name if applicable.) b. Give a brief history and description of your organization and the business(es) in which you are engaged. c. List any accreditation and/or affiliation your organization may have with local, state, or national oversight organizations. d. Describe the experience of your staff in delivering your service, including their credentials. e. Identify the Project Manager and other key personnel who will be administering the contracted services. f. Tell us anything else you would like us to know about your organization that is relevant to your RFP response. g. Provide three professional references for projects similar in scope and size. h. Please limit your organization narrative to no more than two pages. IV. Technical Details / Scope of Work: a. Detailed Testing Procedures b. Deliverables V. Project Management & Implementation a. Provide a detailed description and timeline for the program implementation b. Provide name and title of Project Manager
8 Request for Proposal P a g e 8 c. Provide name and title of on-site representative d. Specify your company's dispute resolution process and time frame VI. Cost/Fee Information: a. Normal Invoicing Procedures b. Invoice must include: i. Net cost of each item or service ii. Terms Net 30 days 9. Selection Criteria I. VENDOR selection shall be based on a two-part rubric that includes a Vendor Selection Scorecard and the Average Score given by provided references. II. This RFP does not commit the Commission to award a contract, pay any cost incurred in the preparation of a proposal in response to the RFP or to procure or contract for any services. III. This project will not necessarily be awarded to the lowest bidder. All responses to this RFP will be evaluated based on the response that is the most advantageous to StAPPC and will provide the highest quality of service at a fair and competitive price. Furthermore, St. Andrew's Parks and Playground reserves the right to award in whole or in part and / or reject any and all bids. 10. Process Schedule Release of Request for Proposal: Sunday, August 2, 2015 Deadline for Pre-bid Questions: Wednesday, August 5, :30 pm EDT RFP Sealed Submissions Due: Friday, August 21, 2015 at 12:00 noon EDT Vendor Evaluations: Friday, August 21, :00 pm - 4:00 pm EDT Letter of Award: Friday, August 28, :00 pm EDT Notice to Proceed and Project Meeting with Selected Vendor: Monday, August 31, :00 pm EDT
Request for Proposal. St. Andrew's Parish Parks & Playground Commission Bid Deadline: July 17, 2015 at 12 Noon
Request for Proposal For: High-Speed Internet Service MPLS Site to Site Network St. Andrew's Parish Parks & Playground Commission Bid Deadline: July 17, 2015 at 12 Noon Request for Proposal P a g e 2 Table
More informationRequest for Quotation
Request for Quotation For the supply of one Snow Mobile for the Searchmont Ski Resort Developed for: Administered and managed by: Jason Naccarato Project Manager Northstar Consulting B.Eng (Mechanical),
More informationRequest for Quotation For the Supply, Installation and Configuration of Security Analytics
Request for Quotation For the Supply, Installation and Configuration of Security Analytics PASEGURUHAN NG MGA NAGLILINGKOD SA PAMAHALAAN (GOVERNMENT SERVICE INSURANCE SYSTEM) Financial Center, Pasay City
More informationRequest for Quotation (RfQ028) Customer Relationship Management System (CRM)
Request for Quotation (RfQ028) Customer Relationship Management System (CRM) Kings Road, Plymouth, PL1 5QG Issued: Request for Quotation P a g e 2 Confidentiality Statement This document, and any attachments
More informationUnited Way Monterey County
Request for Proposal for Collaborative Leadership Skill Building Friday, August 8, 2014 60 Garden Court, Suite 350 Monterey, CA 93940 Phone: (831) 372-8026 Fax: (831) 372-4945 Request for Proposal P a
More informationREQUEST FOR PROPOSALS FOR PCI COMPLIANCE SERVICES FOR THE GREENVILLE-SPARTANBURG AIRPORT DISTRICT
REQUEST FOR PROPOSALS FOR PCI COMPLIANCE SERVICES FOR THE GREENVILLE-SPARTANBURG AIRPORT DISTRICT Issue Date: March 4, 2013 Pre-Submittal Conference: March 19 @ 2:00 p.m. Greenville-Spartanburg International
More informationRequest for Proposal/Quotation For Cowley County Network and SAN Expansion
Request for Proposal/Quotation Cowley County MIS-GIS 311 East 9 th Ave, Winfield, KS 67156 Request for Proposal P a g e 2 Table of Contents Confidentiality Statement... 3 Submission Details... 3 Submission
More informationConstruction Management Services Delmar School District RFP No. DSD16001-CONSTR_MAN
Construction Management Services Delmar School District RFP No. DSD16001-CONSTR_MAN The Delmar School District (DSD) is seeking the professional services of a Construction Management (CM) firm for the
More informationTwo Approaches to PCI-DSS Compliance
Disclaimer Copyright Michael Chapple and Jane Drews, 2006. This work is the intellectual property of the authors. Permission is granted for this material to be shared for non-commercial, educational purposes,
More informationContracting for Services
Contracting for Services A National State Auditors Association Best Practices Document Published by the National State Auditors Association Copyright 2003 by the National State Auditors Association. All
More informationVendor Questions and Answers
OHIO DEFERRED COMPENSATION REQUEST FOR PROPOSALS (RFP) FOR COMPREHENSIVE SECURITY ASSESSMENT CONSULTANT Issue Date: December 7, 2016 Written Question Deadline: January 11, 2016 Proposal Deadline: RFP Contact:
More informationPCI Compliance Overview
PCI Compliance Overview 1 PCI DSS Payment Card Industry Data Security Standard Standard that is applied to: Merchants Service Providers (Banks, Third party vendors, gateways) Systems (Hardware, software)
More informationPenetration Testing. Request for Proposal
Penetration Testing Request for Proposal Head Office: 24 - The Mall, Peshawar Cantt, 25000 Khyber Pakhtunkhwa, Islamic Republic of Pakistan UAN: +92-91-111-265-265, Fax: +92-91-5278146 Website: www.bok.com.pk
More informationSample Statement of Work
Sample Statement of Work Customer name Brad Miller brad@solidborder.com Fishnet Security Sample Statement of Work: Customer Name Scope of Work Engagement Objectives Customer, TX ( Customer or Client )
More informationREQUEST FOR PROPOSAL #R13004 INFORMATION SECURITY PENETRATION ASSESSMENT
REQUEST FOR PROPOSAL #R13004 INFORMATION SECURITY PENETRATION ASSESSMENT Joliet Junior College Request for Proposal INFORMATION SECURITY PENETRATION ASSESSMENT RFP Opening MAY 22, 2013 @ 2:00P.M. Background
More informationTOP 10 WAYS TO ADDRESS PCI DSS COMPLIANCE. ebook Series
TOP 10 WAYS TO ADDRESS PCI DSS COMPLIANCE ebook Series 2 Headlines have been written, fines have been issued and companies around the world have been challenged to find the resources, time and capital
More informationDocument Management System Request for Proposal
Request for Proposal W240 N3065 Pewaukee Rd Pewaukee, WI 53072 Contact: Robert Kewan Director of Information Technology 262-691-6001 kewan@pewaukee.wi.us PROPOSALS DUE Friday May 13, 2016 NO LATER THAN
More informationUNIVERSITY OF CENTRAL ARKANSAS PURCHASING OFFICE 2125 COLLEGE AVENUE SUITE 2 CONWAY, AR 72034
UNIVERSITY OF CENTRAL ARKANSAS PURCHASING OFFICE 2125 COLLEGE AVENUE SUITE 2 CONWAY, AR 72034 REQUEST FOR PROPOSAL Information Technology Security Audit RFP#UCA-15-072 PROPOSALS MUST BE RECEIVED BEFORE:
More informationOffice of Finance and Treasury
Office of Finance and Treasury How to Accept & Process Credit and Debit Card Transactions Procedure Related Policy Title Credit Card Processing Policy For University Merchant Locations Responsible Executive
More informationREQUEST FOR PROPOSAL: STRUCTURED CABLING, LAN SWITCHES, LONG DISTANCE SERVICE, ELECTRONIC FAXING, AND HOSTED VOIP SPECIFICATIONS
SECOND ADDENDUM TO RFP DOCUMENTS REQUEST FOR PROPOSAL: STRUCTURED CABLING, LAN SWITCHES, LONG DISTANCE SERVICE, ELECTRONIC FAXING, AND HOSTED VOIP SPECIFICATIONS 11/9/2015 To All Potential Bidders: This
More informationRFP Milestones, Instructions, and Information
This Request for Proposal is being issued by the Lower Colorado River Authority (LCRA). LCRA is a conservation and reclamation district of the State of Texas created pursuant to Article XVI, Section 59,
More informationC. La Plata County is exempt from all state taxation including state sales and use tax.
Informal Bid (Request for Quotes) Drupal Hosting and Development Service Project Number 12-062-2201 Let Date: August 17, 2012 Bid Deadline: 2:00 p.m. August 30, 2012 I. Administrative Information A. La
More informationCITY OF SAN DIEGO ADMINISTRATIVE REGULATION Number 95.51 PAYMENT CARD INDUSTRY (PCI) COMPLIANCE POLICY. Page 1 of 9.
95.5 of 9. PURPOSE.. To establish a policy that outlines the requirements for compliance to the Payment Card Industry Data Security Standards (PCI-DSS). Compliance with this standard is a condition of
More informationPCI Requirements Coverage Summary Table
StillSecure PCI Complete Managed PCI Compliance Solution PCI Requirements Coverage Summary Table December 2011 Table of Contents Introduction... 2 Coverage assumptions for PCI Complete deployments... 2
More informationREQUEST FOR PROPOSAL
Trophy Club Municipal Utility District No.1 100 Municipal Dr. Trophy Club, Texas 76262 682-831-4600 REQUEST FOR PROPOSAL for AFTER HOURS ANSWERING SERVICES MARCH 11, 2013 1 NOTICE TO BIDDERS Competitive
More informationProject Title slide Project: PCI. Are You At Risk?
Blank slide Project Title slide Project: PCI Are You At Risk? Agenda Are You At Risk? Video What is the PCI SSC? Agenda What are the requirements of the PCI DSS? What Steps Can You Take? Available Services
More informationPCI Compliance. Top 10 Questions & Answers
PCI Compliance Top 10 Questions & Answers 1. What is PCI Compliance and PCI DSS? 2. Who needs to follow the PCI Data Security Standard? 3. What happens if I don t comply? 4. What are the basic requirements
More informationPCI Requirements Coverage Summary Table
StillSecure PCI Complete Managed PCI Compliance Solution PCI Requirements Coverage Summary Table January 2013 Table of Contents Introduction... 2 Coverage assumptions for PCI Complete deployments... 2
More informationSolicitation Q38834. External Vulnerability Scan & Web Application Vulnerability Scanning Services. Weber State University
Solicitation Q38834 External Vulnerability Scan & Web Application Vulnerability Scanning Services Weber State University Mar 22, 2011 8:35:12 AM MDT p. 1 External Vulnerability Scan & Web Application Vulnerability
More informationRequest for Proposals Erate Category 1 Hosted VoIP Service Hinds County School District
Request for Proposals Erate Category 1 Hosted VoIP Service Hinds County School District Notice to Bidders Notice is hereby given to interested bidders that the Hinds County School District will receive
More informationInformation Security Services. Achieving PCI compliance with Dell SecureWorks security services
Information Security Services Achieving PCI compliance with Dell SecureWorks security services Executive summary In October 2010, the Payment Card Industry (PCI) issued the new Data Security Standard (DSS)
More informationCHAMPAIGN COMMUNITY SCHOOL DISTRICT #4 Champaign, Illinois
CHAMPAIGN COMMUNITY SCHOOL DISTRICT #4 Champaign, Illinois INTERACTIVE WHITEBOARDS (SMARTBOARDS) AND DIGITAL PROJECTORS RFP SPECIFICATIONS I. INTRODUCTION Background The Champaign Community Unit School
More informationREQUEST FOR PROPOSAL: A NEW AUDITING SOLUTION FOR WINDOWS FILE AND DATABASE SERVERS
REQUEST FOR PROPOSAL: A NEW AUDITING SOLUTION FOR WINDOWS FILE AND DATABASE SERVERS Issued: TABLE OF CONTENTS 1. Introduction...3 1.1 Purpose...3 1.2 Background...3 1.3 Scope of Work...3 1.4 Current Infrastructure...3
More informationPCI DSS 3.0 and You Are You Ready?
PCI DSS 3.0 and You Are You Ready? 2014 STUDENT FINANCIAL SERVICES CONFERENCE Linda Combs combslc@jmu.edu Ron King rking@campusguard.com AGENDA PCI and Bursar Office Role Key Themes in v3.0 Timelines Changes
More informationGALVESTON COUNTY HEALTH DISTRICT. Request For Proposal Health Insurance Broker Services RFP 15-011
GALVESTON COUNTY HEALTH DISTRICT Request For Proposal Health Insurance Broker Services RFP 15-011 INTRODUCTION The Galveston County Health District (GCHD) is requesting Proposals for health insurance broker
More informationRequest for Proposals on Security Audit Services
Request for Proposals on Security Audit Services Version 1.0 Date: 16 December 2011 Hong Kong Internet Registration Corporation Limited Unit 2002-2005, 20/F ING Tower, 308 Des Voeux Road Central, Sheung
More informationStephenson County, Illinois
Stephenson County, Illinois REQUEST FOR PROPOSALS For EXTERIOR CLEANING OF STEPHENSON COUNTY COURTHOUSE Bids Due: Sealed proposals are due and must be received in the Stephenson County Administrator s
More informationSEALED BID REQUEST FOR INFORMATION
Department of Buildings and General Services Purchasing & Contract Administration 10 Baldwin St. Agency of Administration Montpelier VT 05633 [phone] 802-828-2210 [Fax] 802-828-2222 www.bgs.state.vt.us
More informationAccounting and Administrative Manual Section 100: Accounting and Finance
No.: C-13 Page: 1 of 6 POLICY: It is the policy of the University of Alaska that all payment card transactions are to be executed in compliance with standards established by the Payment Card Industry Security
More informationPCI Compliance at The University of South Carolina. Failure is not an option. Rick Lambert PMP University of South Carolina ricklambert@sc.
PCI Compliance at The University of South Carolina Failure is not an option Rick Lambert PMP University of South Carolina ricklambert@sc.edu Payment Card Industry Data Security Standard (PCI DSS) Who Must
More informationRequest for Proposal. Internet Access. Satilla Regional Libraries. Erate Funding Year July 1, 2014 through June 30, 2015
Request for Proposal Internet Access Satilla Regional Libraries Erate Funding Year July 1, 2014 through June 30, 2015 January 2013 Page 1 REQUEST FOR PROPOSAL Internet Access Satilla Regional Library The
More informationPayment Card Industry Data Security Standard
Payment Card Industry Data Security Standard Office of the State Treasurer Ryan Pitroff Banking Services Manager Ryan.Pitroff@tre.wa.gov PCI-DSS A common set of industry tools and measurements to help
More informationComodo HackerGuardian. PCI Security Compliance The Facts. What PCI security means for your business
Comodo HackerGuardian PCI Security Compliance The Facts What PCI security means for your business Overview The Payment Card Industry Data Security Standard (PCI DSS) is a set of 12 requirements intended
More informationADDENDUM #1 REQUEST FOR PROPOSALS 2015-151
ADDENDUM #1 REQUEST FOR PROPOSALS 2015-151 HIPAA/HITECH/OMNIBUS Act Compliance Consulting Services TO: FROM: CLOSING DATE: SUBJECT: All Potential Responders Angie Williams, RFP Coordinator September 24,
More informationPCI Compliance Top 10 Questions and Answers
Where every interaction matters. PCI Compliance Top 10 Questions and Answers White Paper October 2013 By: Peer 1 Hosting Product Team www.peer1.com Contents What is PCI Compliance and PCI DSS? 3 Who needs
More informationPCI Security Compliance
E N T E R P R I S E Enterprise Security Solutions PCI Security Compliance : What PCI security means for your business The Facts Comodo HackerGuardian TM PCI and the Online Merchant Overview The Payment
More informationShawnee County ATTN: Bill Kroll 200 SE 7 th Street, Rm B-30 Topeka, KS 66603 Phone 785.251-4490 Bill.Kroll@snco.us
SECTION I Shawnee County is requesting qualifications/proposals for the renovation of 2600 SW East Circle Drive, Topeka, Kansas 66606 which will be utilized by the Shawnee County Health Agency per the
More informationHow To Ensure Account Information Security
Global PCI DSS Framework Emöke Bitter Business Leader, Risk Management 26 February 2009 Agenda Introduction Merchants Service Providers Registry of Service Providers Payment Applications Resources Information
More informationPayment Card Industry Data Security Standard (PCI DSS) and Payment Application Data Security Standard (PA-DSS) Frequently Asked Questions
PCI/PA-DSS FAQs Payment Card Industry Data Security Standard (PCI DSS) and Payment Application Data Security Standard (PA-DSS) Frequently Asked Questions What is PCI DSS? The Payment Card Industry Data
More informationPayment Card Industry Data Security Standard (PCI DSS) Q & A November 6, 2008
Payment Card Industry Data Security Standard (PCI DSS) Q & A November 6, 2008 What is the PCI DSS? And what do the acronyms CISP, SDP, DSOP and DISC stand for? The PCI DSS is a set of comprehensive requirements
More informationWhat are the PCI DSS requirements? PCI DSS comprises twelve requirements, often referred to as the digital dozen. These define the need to:
What is the PCI standards council? The Payment Card Industry Standards Council is an institution set-up by American Express, Discover Financial Services, JCB, MasterCard Worldwide and Visa International
More informationCITY OF LANCASTER RFP NO. 621-15 LANCASTER PERFORMING ARTS CENTER TICKETING SOFTWARE SUBMISSION DEADLINE. July 24, 2015 BY 11:00 A.M.
CITY OF LANCASTER RFP NO. 621-15 LANCASTER PERFORMING ARTS CENTER TICKETING SOFTWARE SUBMISSION DEADLINE July 24, 2015 BY 11:00 A.M. SUBMIT TO: Office of the City Clerk Lancaster City Hall 44933 Fern Avenue
More informationIt Won t Happen To Me! A Network and PCI Security Webinar Presented By FMS and VendorSafe
It Won t Happen To Me! A Network and PCI Security Webinar Presented By FMS and VendorSafe Agenda Who Is VendorSafe Technologies? It Won t Happen to Me! PCI DSS Overview The VendorSafe Solution Questions
More informationPayment Card Industry Compliance Overview
January 31, 2014 11:30am 12:30pm Central Hosted by: Texas.gov Presented by: Jayne Holland Barbara Brinson Payment Card Industry Compliance Overview Securing Government Payments Audio Dial In: 866-740-1260
More informationWhitepaper. PCI Compliance: Protect Your Business from Data Breach
Merchants often underestimate the financial impact of a breach. Direct costs include mandatory forensic audits, credit card replacement, fees, fines and breach remediation. PCI Compliance: Protect Your
More informationREQUEST FOR QUOTES (RFQ) FOR PLUMBING SERVICES. RFQ Release Date: August 3, 2015. Quote Due Date: August 21, 2015 at 5:00 p.m.
REQUEST FOR QUOTES (RFQ) FOR PLUMBING SERVICES RFQ Release Date: August 3, 2015 Quote Due Date: August 21, 2015 at 5:00 p.m. SOUTHEAST MICHIGAN COMMUNITY ALLIANCE (SEMCA) 25363 Eureka Rd. Taylor, MI 48180
More informationMemorandum. 1. Introduction
Memorandum To: Mississippi Government IT Directors and Purchasing Agents From: Craig P. Orgeron, Ph.D. Date: April 22, 2015 (Revised June 29, 2015) Re: Security Assessment Services RFP No. 3735 Instructions
More informationBid Package for IT Support Services
Bid Package for IT Support Services Tri-Town Community Action Agency (includes South County Community Action, Inc.) is seeking bids for a qualified IT consultant to assist in-house staff with IT related
More informationOnline Compliance Program for PCI
Appendix F Online Compliance Program for PCI Service Description for PCI Compliance Monitors 1. General Introduction... 3 2. Online Compliance Program... 4 2.1 Introduction... 4 2.2 Portal Access... 4
More informationCredit Cards and Oracle: How to Comply with PCI DSS. Stephen Kost Integrigy Corporation Session #600
Credit Cards and Oracle: How to Comply with PCI DSS Stephen Kost Integrigy Corporation Session #600 Background Speaker Stephen Kost CTO and Founder 16 years working with Oracle 12 years focused on Oracle
More informationREQUEST FOR QUALIFICATIONS PROPERTY APPRAISAL SERVICES. Prepared by. City of Richmond Finance Department. February 18, 2016 RESPONSES DUE:
REQUEST FOR QUALIFICATIONS PROPERTY APPRAISAL SERVICES Prepared by City of Richmond Finance Department February 18, 2016 RESPONSES DUE: 2:30 P.M., Monday, March 7, 2016 REQUEST FOR STATEMENTS OF QUALIFICATIONS
More informationCredit Cards and Oracle E-Business Suite Security and PCI Compliance Issues
Credit Cards and Oracle E-Business Suite Security and PCI Compliance Issues August 16, 2012 Stephen Kost Chief Technology Officer Integrigy Corporation Phil Reimann Director of Business Development Integrigy
More informationVendor 1 QUESTION CCSF RESPONSE
Vendor 1 QUESTION 1 If we have already filled out the vendor profile application, business tax declaration and local business forms will we need to fill them out again? 2 Is CCSF open to rolling up all
More informationPCI DSS. Payment Card Industry Data Security Standard. www.tuv.com/id
PCI DSS Payment Card Industry Data Security Standard www.tuv.com/id What Is PCI DSS? PCI DSS (Payment Card Industry Data Security Standard) is the common security standard of all major credit cards brands.the
More informationClark University's PCI Compliance Policy
ï» Clark University's PCI Compliance Policy Who Should Read this Policy: All persons who have access to credit card information, including: Every employee that accesses handles or maintains credit card
More informationREQUEST FOR PROPOSAL (RFP) FORM. Enter title here. Invitation to Bid. Utica College invites you to submit a proposal to brief description.
REQUEST FOR PROPOSAL (RFP) FORM TITLE: Enter title here I. GENERAL INFORMATION Invitation to Bid. Utica College invites you to submit a proposal to brief description. If a contract results from this RFP,
More informationCity of Colville Request for Proposals. To provide Information Technology (IT) Support Services, A Wide Area Network (WAN) and/or Hardware
City of Colville Request for Proposals To provide Information Technology (IT) Support Services, A Wide Area Network (WAN) and/or Hardware Introduction The City of Colville Washington is soliciting proposals
More informationCounselorMax and ORS Managed Hosting RFP 15-NW-0016
CounselorMax and ORS Managed Hosting RFP 15-NW-0016 Posting Date 4/22/2015 Proposal submission deadline 5/15/2015, 5:00 PM ET Purpose of the RFP NeighborWorks America has a requirement for managed hosting
More informationDotNetNuke (DNN) Hosting Environment
Prepared July 27, 2012 R E Q U E S T F O R Q U O T A T I O N Page 1 of 13 Table of Contents INTRODUCTION AND BACKGROUND...3 PURPOSE OF THE REQUEST FOR QUOTATION...3 BACKGROUND...3 ADMINISTRATIVE...5 DUE
More informationSpokane Airport Board (Spokane International Airport, Airport Business Park, Felts Field) Addendum #1 - Q&A
Spokane Airport Board (Spokane International Airport, Airport Business Park, Felts Field) Request for Proposals (RFP) for PCI DSS COMPLIANCE SERVICES Project # 15-49-9999-016 Addendum #1 - Q&A May 29,
More informationRequest for Proposal Permitting Software
Request for Proposal Permitting Software Date Issued: October 7, 2015 Proposals Due no later than: 2:00pm EST on November 10, 2015 Page 1 of 10 Revised 10/5/2015 TABLE OF CONTENTS Section I Introduction
More informationREQUEST FOR PROPOSAL For Retirement Investment Advisor Services Bid Number: 032315 March 2, 2015
Fresno Economic Opportunities Commission (Fresno EOC or Agency) is soliciting proposals to establish a contract with one (1) qualified and experienced Retirement Investment Advisory Firm to handle the
More information2015-2016 REQUEST FOR PROPOSAL WAN AND INTERNET AND HOSTED VOIP
2015-2016 REQUEST FOR PROPOSAL WAN AND INTERNET AND HOSTED VOIP DEADLINE FOR SUBMISSION February 16, 2015 2:00 PM CAMERON PARISH SCHOOL DISTRICT E-RATE RFP 2015-2016 1. PURPOSE CAMERON PARISH SCHOOL DISTRICT
More informationCity of Belton 506 Main Street Belton, MO 64012 ATTENTION: Patti Ledford
REQUEST FOR PROPOSALS HOSTED INTERACTIVE VOICE RESPONSE SYSTEM NOTICE OF REQUEST FOR PROPOSALS NOTICE IS HEREBY GIVEN that the City of Belton, Missouri, (hereinafter referred to as City ) is requesting
More informationTREASURER S OFFICE ADMINISTRATIVE STANDARDS FOR THE TREASURER S FISCAL PROCEDURE No. 08-01 MERCHANT DEBIT AND CREDIT CARD RECEIPTS
TREASURER S OFFICE ADMINISTRATIVE STANDARDS FOR THE TREASURER S FISCAL PROCEDURE No. 08-01 MERCHANT DEBIT AND CREDIT CARD RECEIPTS 1. Introduction Debit and Credit Card Receipt Standards apply to the administration
More informationSecurityMetrics Introduction to PCI Compliance
SecurityMetrics Introduction to PCI Compliance Card Data Compromise What is a card data compromise? A card data compromise occurs when payment card information is stolen from a merchant. Some examples
More informationREQUEST FOR QUALIFICATIONS/PROPOSALS (RFQ/P) FOR COMMERCIAL PROPERTY MANGEMENT SERVICES FOR 3737 MAIN STREET GROUND FLOOR COMMERCIAL
REQUEST FOR QUALIFICATIONS/PROPOSALS (RFQ/P) FOR COMMERCIAL PROPERTY MANGEMENT SERVICES FOR 3737 MAIN STREET GROUND FLOOR COMMERCIAL ISSUED: JUNE 21, 2016 PROPOSALS DUE: AUGUST 22, 2016 CITY OF RIVERSIDE
More informationWhitepaper. PCI Compliance: Protect Your Business from Data Breach
Merchants often underestimate the financial impact of a breach. Direct costs include mandatory forensic audits, credit card replacement, fees, fines and breach remediation. PCI Compliance: Protect Your
More informationREQUEST FOR PROPOSAL. RPMS EHR Lab Consultant Project NISQUALLY INDIAN TRIBE
BIDDERS COMPANY NAME REQUEST FOR PROPOSAL RPMS EHR Lab Consultant Project NISQUALLY INDIAN TRIBE Prepared By: Nisqually Health Department Samantha Phillips, Health Director 4820 She-Nah-Num Drive Olympia
More informationREQUEST FOR PROPOSAL CONSTRUCTION MANAGEMENT SERVICES
REQUEST FOR PROPOSAL CONSTRUCTION MANAGEMENT SERVICES Big Rapids Public Schools Building Program 2005 OWNER Big Rapids Public Schools 21034 15-Mile Road Big Rapids, Michigan 49307 PHONE: (231) 796-2627
More informationThird-Party Access and Management Policy
Third-Party Access and Management Policy Version Date Change/s Author/s Approver/s Dean of Information Services 1.0 01/01/2013 Initial written policy. Kyle Johnson Executive Director for Compliance and
More informationAUTOMATING AUDITS AND ENSURING CONTINUOUS COMPLIANCE WITH ALGOSEC
AUTOMATING AUDITS AND ENSURING CONTINUOUS COMPLIANCE WITH ALGOSEC MANAGE SECURITY AT THE SPEED OF BUSINESS AlgoSec Whitepaper Simplifying PCI-DSS Audits and Ensuring Continuous Compliance with AlgoSec
More informationPDQ Guide for the PCI Data Security Standard Self-Assessment Questionnaire C (Version 1.1)
PDQ has created an Answer Guide for the Payment Card Industry (PCI) Data Security Standard Self-Assessment Questionnaire C to help wash operators complete questionnaires. Part of the Access Customer Management
More informationRegion 7 Education Service Center Request for Proposal (RFP) For Generator Installation
Region 7 Education Service Center Request for Proposal (RFP) For Generator Installation Purpose The purpose of this Request for Proposal (RFP) is to invite prospective vendors to submit a proposal to supply
More informationREQUEST FOR PROPOSAL RFP 143-10-27-15 GPS FLEET MANAGEMENT SOLUTIONS FOR FREMONT UNIFIED SCHOOL DISTRICT 4210 TECHNOLOGY DRIVE FREMONT, CA 94538
REQUEST FOR PROPOSAL RFP 143-10-27-15 GPS FLEET MANAGEMENT SOLUTIONS FOR FREMONT UNIFIED SCHOOL DISTRICT 4210 TECHNOLOGY DRIVE FREMONT, CA 94538 Proposals Due October 27, 2015 at 2:00 PM 1 P age TABLE
More information6-8065 Payment Card Industry Compliance
0 0 0 Yosemite Community College District Policies and Administrative Procedures No. -0 Policy -0 Payment Card Industry Compliance Yosemite Community College District will comply with the Payment Card
More informationProperty of CampusGuard. Compliance With The PCI DSS
Compliance With The PCI DSS Today s Agenda PCI DSS Introduction How are Colleges and Universities Affected? How Do You Validate Compliance? Best Practices Q&A CampusGuard Full-Service QSA/ASV Firm We Know
More informationTAHOE REGIONAL PLANNING AGENCY REQUEST FOR PROPOSAL FOR SOFTWARE CONSULTANT
TAHOE REGIONAL PLANNING AGENCY 128 Market Street P.O. Box 5310 Phone: (775) 588-4547 Stateline, NV 89449 Stateline, Nevada 89449-5310 Fax (775) 588-4527 www.trpa.org Email: trpa@trpa.org REQUEST FOR PROPOSAL
More informationTENDER FOR ROOF REPAIR FOR THE NSLC S METEGHAN RETAIL STORE NOVA SCOTIA LIQUOR CORPORATION 93 CHAIN LAKE DRIVE HALIFAX, NOVA SCOTIA B3S 1A3
TENDER FOR ROOF REPAIR FOR THE NSLC S METEGHAN RETAIL STORE NOVA SCOTIA LIQUOR CORPORATION 93 CHAIN LAKE DRIVE HALIFAX, NOVA SCOTIA B3S 1A3 NSLC REFERENCE NO: CN-04-l-16 NSLC Contact: Email: Stephen Bayer
More informationAISA Sydney 15 th April 2009
AISA Sydney 15 th April 2009 Where PCI stands today: Who needs to do What, by When Presented by: David Light Sense of Security Pty Ltd Agenda Overview of PCI DSS Compliance requirements What & When Risks
More informationYour Compliance Classification Level and What it Means
General Information What are the Payment Card Industry (PCI) Data Security Standards? The PCI Data Security Standards represents a common set of industry tools and measurements to help ensure the safe
More informationWorldpay s guide to the Payment Card Industry Data Security Standard (PCI DSS)
Worldpay s guide to the Payment Card Industry Data Security Standard (PCI DSS) What is PCI DSS? The 12 Requirements Becoming compliant with SaferPayments Understanding the jargon SaferPayments Be smart.
More informationINTERNATIONAL FOUNDATION FOR ELECTORAL SYSTEMS (IFES) RFQ/15/0061
REQUEST FOR QUOTATION INTERNATIONAL FOUNDATION FOR ELECTORAL SYSTEMS (IFES) Request for Quotation to supply: in Pakistan RFQ/15/0061 20 January 2015 Table of Contents 1 STATEMENT OF WORK...3 1.1 PURPOSE...3
More informationIT Security Compliance PCI DSS FOR MERCHANTS THE PAYMENT CARD INDUSTRY DATE SECURITY STANDARD WHITE PAPER
July 9 th, 2012 Prepared By: Mark Akins PCI QSA, CISSP, CISA WHITE PAPER IT Security Compliance PCI DSS FOR MERCHANTS THE PAYMENT CARD INDUSTRY DATE SECURITY STANDARD PCI DSS for Merchants The Payment
More informationBottom line you must be compliant. It s the law. If you aren t compliant, you are leaving yourself open to fines, lawsuits and potentially closure.
Payment Card Industry Security Standards Over the past years, a series of new rules and regulations regarding consumer safety and identify theft have been enacted by both the government and the PCI Security
More informationAMBULANCE TRANSPORT BILLING FOR MACON COUNTY EMERGENCY MEDICAL SERVICES
REQUEST FOR PROPOSALS RFP#01 4375p AMBULANCE TRANSPORT BILLING FOR MACON COUNTY EMERGENCY MEDICAL SERVICES ISSUE DATE: DECEMBER 3, 2010 ISSUING DEPARTMENT: MACON COUNTY FINANCE DEPARTMENT 5 WEST MAIN STREET
More informationREQUEST FOR PROPOSALS SPEC. # 4995
Department of Finance Tel (914) 654-2072 515 North Avenue Fax (914) 654-2057 New Rochelle, NY 10801 Howard Rattner Commissioner City of New Rochelle New York REQUEST FOR PROPOSALS SPEC. # 4995 NEW RO WORKS!
More informationCITY OF TULSA FINANCE DEPARTMENT. PROFESSIONAL SERVICES FOR Loyalty Rewards Card Program
CITY OF TULSA FINANCE DEPARTMENT REQUEST FOR PROPOSAL 12-615 PROFESSIONAL SERVICES FOR Loyalty Rewards Card Program NIGP CODE 918-26 Tulsa, OK 74103 Submit proposals to: Deputy City Clerk City of Tulsa
More informationNEWBURGH ENLARGED CITY SCHOOL DISTRIST NEWBURGH, NEW YORK REQUEST FOR PROPOSAL ARCHITECTURE SERVICES 2015 2016
NEWBURGH ENLARGED CITY SCHOOL DISTRIST NEWBURGH, NEW YORK REQUEST FOR PROPOSAL ARCHITECTURE SERVICES 2015 2016 Notice is hereby given that the Board of Education of the Newburgh Enlarged City School District,
More information