Contents. Facts. Contact. Company Biography...4. Qualifications & Accolades...5. Executive Leadership Team...6. Products & Services...

Similar documents
SecurityMetrics. history products expertise team awards

Guided HIPAA Compliance

SecurityMetrics. PCI Starter Kit

SecurityMetrics Introduction to PCI Compliance

Ecommerce Guide to PCI DSS 3.0

BRAND-NAME is What COUNTS!!!

Foregenix Incident Response Handbook. A comprehensive guide of what to do in the unfortunate event of a compromise

SecurityMetrics Business Associate HIPAA compliance program

To ensure independence, PSC does not represent, resell or receive commissions from any third party hardware, software or solutions vendors.

How To Stop A Cybercriminal From Stealing A Credit Card Data From A Business Network

PCI DSS Overview. By Kishor Vaswani CEO, ControlCase

Payment Card Industry Compliance Overview

Payment Card Industry Data Security Standard (PCI DSS) and Payment Application Data Security Standard (PA-DSS) Frequently Asked Questions

INFORMATION TECHNOLOGY FLASH REPORT

HOW SECURE IS YOUR PAYMENT CARD DATA?

Security Breaches and Vulnerability Experiences Overview of PCI DSS Initiative and CISP Payment Application Best Practices Questions and Comments

PCI Compliance in Multi-Site Retail Environments

Property of CampusGuard. Compliance With The PCI DSS

Keeping watch over your best business interests.

Project Title slide Project: PCI. Are You At Risk?

How To Protect Visa Account Information

External Scanning and Penetration Testing in PCI DSS 3.0. Gary Glover, Sr. Director of Security Assessments

Four Keys to Preparing for a PCI DSS 3.0 Assessment

Data Security for the Hospitality

Payment Card Industry (PCI) Data Security Standard QSA Validation Requirements. Supplement for PCI Forensic Investigators (PFIs)

Payment Card Industry Data Security Standard (PCI DSS) Q & A November 6, 2008

HOW TO PREPARE FOR A PCI DSS AUDIT

Don Roeber Vice President, PCI Compliance Manager. Lisa Tedeschi Assistant Vice President, Compliance Officer

Customer Card Data Security and You

How To Build A Cybersecurity Company

PCI DSS. Payment Card Industry Data Security Standard.

PCI Requirements Coverage Summary Table

How To Protect Your Credit Card Information From Being Stolen

PCI Compliance 101: Payment Card. Your Presenter: 7/19/2011. Data Security Standards Compliance. Wednesday, July 20, :00 pm 3:00 pm EDT

PCI Overview. Lee Buttke Director of Consulting QSA, CPISM, CISSP

Protecting Cardholder Data Throughout Your Enterprise While Reducing the Costs of PCI Compliance

CHEAT SHEET: PCI DSS 3.1 COMPLIANCE

Brown Smith Wallace, LLC

The McAfee SECURE TM Standard

See page 16. Thomas A. Vallas

The State of Security and Compliance for E- Commerce and Retail

Information Security Services. Achieving PCI compliance with Dell SecureWorks security services

PCI Compliance: How to ensure customer cardholder data is handled with care

PCI Compliance Overview

Achieving Compliance with the PCI Data Security Standard

On-Site Manager Exclusive Customer Offer

Redhawk Network Security, LLC Layton Ave., Suite One, Bend, OR

PCI DSS READINESS AND RESPONSE

MasterCard PCI & Site Data Protection (SDP) Program Update. Academy of Risk Management Innovate. Collaborate. Educate.

PCI PA-DSS Requirements. For hardware vendors

Protecting Your Customers' Card Data. Presented By: Oliver Pinson-Roxburgh

Puzzled about PCI compliance? Proactive ways to navigate through the standard for compliance

HOW SECURE IS YOUR PAYMENT CARD DATA? COMPLYING WITH PCI DSS

Strategies To Effective PCI Scoping ISACA Columbus Chapter Presentation October 2008

PCI Assessments 3.0 What Will the Future Bring? Matt Halbleib, SecurityMetrics

PCI: The Dark Side. May 2012 Roanoke, VA

PCI Compliance The Road Ahead. October 2012 Hari Shah & Parthiv Sheth

Cyber - Security and Investigations. Ingrid Beierly August 18, 2008

Mobile Device Payment Card Processing: How Secure is It? Richard Poworski CISSP, ISP, ITCP, SCF, PCI QSA, PCIP Managing Consultant

PCI Standards: A Banking Perspective

What You Need to Know About PCI SSC Guiding open standards for global payment card security

Payment Card Industry Data Security Standards

Your guide to the Payment Card Industry Data Security Standard (PCI DSS) Merchant Business Solutions. Version 5.0 (April 2011)

Payment Card Industry Data Security Standard (PCI DSS) v1.2

PCI Requirements Coverage Summary Table


PCI DSS Compliance White Paper

Key Steps to Meeting PCI DSS 2.0 Requirements Using Sensitive Data Discovery and Masking

PCI DSS Gap Analysis Briefing

PCI Compliance. Top 10 Questions & Answers

AIRDEFENSE SOLUTIONS PROTECT YOUR WIRELESS NETWORK AND YOUR CRITICAL DATA SECURITY AND COMPLIANCE

Network Test Labs Inc Security Assessment Service Description Complementary Service Offering for New Clients

Payment Card Industry Data Security Standard Training. Chris Harper Vice President of Technical Services Secure Enterprise Computing, Inc.

The following are responsible for the accuracy of the information contained in this document:

New PCI Standards Enhance Security of Cardholder Data

PCI DSS Reporting WHITEPAPER

INFORMATION SECURITY TESTING

PCI: It Never Ends. Why?

CORE Security and the Payment Card Industry Data Security Standard (PCI DSS)

WHITE PAPER. PCI Basics: What it Takes to Be Compliant

How Secure is Your Payment Card Data?

Payment Card Industry Security Standards PCI DSS, PCI-PTS and PA-DSS

WHITE PAPER Leveraging GRC for PCI DSS Compliance. By: Chris Goodwin, Co-founder and CTO, LockPath

How to Sell PCI 3.1 to Your Merchants. Matt Brown, Director of Business Development

PCI DSS Overview and Solutions. Anwar McEntee

IT Security Compliance PCI DSS FOR MERCHANTS THE PAYMENT CARD INDUSTRY DATE SECURITY STANDARD WHITE PAPER

Becoming PCI Compliant

PCI It Never Ends! Shekar Swamy, President Omega ATC. Denise Lewis, Pinnacle POS Product Manager. omegasecure.com

Using Free Tools To Test Web Application Security

Hybrid PA-DSS Report on Validation

Overcoming PCI Compliance Challenges

PCI Compliance Top 10 Questions and Answers

PAI Secure Program Guide

SPSP Phase III Recruiting, Selecting, and Developing Secure Power Systems Professionals: Job Profiles

This article describes the history of the Payment Card

PCI DSS: An Evolving Standard

Are You Ready For PCI v 3.0. Speaker: Corbin DelCarlo Institution: McGladrey LLP Date: October 6, 2014

Credit Card Risks: Update on PCI Compliance Monday, May 23 2:40pm 3:55 CPE: 2

Technical breakout session

Payment Card Industry Data Security Standard

Transcription:

Contents Company Biography...4 Qualifications & Accolades...5 Executive Leadership Team...6 Products & Services...8 Company History...10 Facts Founded: 2000 CEO: Brad Caldwell Website: www.securitymetrics.com Headquarters: Orem, Utah Employees: >400 Trade: Data Security and Compliance Industries: Financial, Retail, Hospitality, Government, Healthcare Reach: 173 Countries Clients: >1 Million Key Products: PCI Focus, SecurityMetrics Assurance, Penetration Testing, PANscan, HIPAA Focus. Largest Asset: Customer Service Mission: To enable businesses to comply with financial, government, and healthcare mandates. Contact Sales Inquiries productinfo@securitymetrics.com Press Inquiries pr@securitymetrics.com General Inquiries info@securitymetrics.com SecurityMetrics 1275 West 1600 North Orem, UT 84057 USA 2

Company Biography Security and Compliance Experts SecurityMetrics is a leading provider and innovator in payment data security and compliance for businesses worldwide. In 1998, CEO Brad Caldwell recognized the need for affordable data security for the masses after his company s website was hacked. He founded SecurityMetrics in 2000 in a one-room office space with the goal of developing a reasonably priced system to test website security. SecurityMetrics has grown from a small security company specializing in vulnerability assessment scans to a global leader providing payment data security and compliance solutions. Now, SecurityMetrics is a privately-held corporation headquartered in Orem, Utah with over 400 employees. Our mission? To enable businesses to comply with financial, government, and healthcare mandates. Customer Service One of the most remarkable aspects of our company is its friendly, informative customer service. We have the largest call center in the industry and take over 135,000 calls per month. Since our founding date, we have helped over 1 million organizations, from Fortune 500 businesses and large global financial institutions to small retailers, manage financial, commercial, federal, healthcare, and security compliance. Qualifications Every day, businesses process millions of transactions that must be kept secure from hackers and criminals. We provide secure and innovative Payment Card Industry (PCI) Data Security Standard (DSS) solutions for businesses. Each member of our auditing department is required to be Certified Information Systems Security Professional (CISSP) certified, and we are one of only two companies worldwide to perform: PCI scans (ASV) PCI DSS Assessments (QSA) Payment Application Data Security Standard Audits (PA-QSA) Point-to-Point Encryption Qualified Security Assessments (P2PE QSA) PCI Forensic Investigations (PFI) Accolades 2013 Gold Stevie Award for Sales & Customer Service: Global Sales Team of the Year Silver Stevie Award for Sales & Customer Service: Sales Process of the Year 2012 Ernst & Young Entrepreneur Of The Year 2012 Award in the Utah Region Stevie Award for Sales & Customer Service: Contact Center of the Year 2011 Arthur V. Watkins Award: Entrepreneur of the Year Utah Valley s Entrepreneur of the Year: Brad Caldwell 2010 Inc. 500: #408 Deloitte Technology Fast 500: #122 Utah s 100 Fastest Growing Companies: #19 Utah Valley s Best Kept Entrepreneurial Secret 50 Fastest-Growing Companies in Utah Valley: #4 Top Revenue Companies in Utah Valley: #14 4

Executive Leadership Team The SecurityMetrics leadership team comprises the senior-most leadership, management, and decision-making body of the company. Brad Caldwell is chief executive officer and founder of SecurityMetrics, Inc. Under Caldwell s leadership, SecurityMetrics has grown from a small business security-scanner to a global leader providing Payment Card Industry compliance and data security solutions. With its broad portfolio of products, services and expertise, SecurityMetrics is the leader in helping banks and their merchants secure their sensitive data. Caldwell is certified as a data forensic investigator, onsite auditor (QSA), authorized scan vendor engineer (QSE) and certified information systems security professional (CISSP). Prior to founding SecurityMetrics, Caldwell graduated from Brigham Young University and in 1995 co-founded Software Development Corporation, which developed WordPerfect for UNIX/Linux for Novell and Corel corporations. Blake Stevens is the chief financial officer for SecurityMetrics. With over 25 years of finance and accounting experience in many industries, Stevens is charged with responsibility for accounting, audit, financial analysis, treasury, tax, and investor relations. Stevens began his career as a financial analyst with Coldwell Banker and for 12 years served as the director of finance and corporate controller of Marie Callender s Pie Shops, Inc. where he was instrumental in developing accounting and POS systems and achieving the company s growth initiative. Stevens later became the CFO of Logic General Inc., a manufacturer of CD and DVD s. Stevens holds a bachelor s degree in business administration, with a major in finance from Brigham Young University. Wenlock Free is the vice president of business development for SecurityMetrics, combining a background in international sales and marketing with over 25 years of experience in the business development and training industry. Free is responsible for driving SecurityMetrics business growth strategy and expanding customer security services. Prior to joining SecurityMetrics, Free focused on public speaking, providing training programs throughout the US, UK and Canada. Recruited as director of sales at COR- DA Technologies, Free built successful sales and marketing programs in the financial services marketplace. Free enjoys the challenges and rapid pace of the security industry and building successful business through relationships. Gary Glover is the Director of Security Assessment at SecurityMetrics and holds QSA (Qualified Security Assessor), PA-QSA (Payment Application Qualified Security Assessor), CISSP (Certified Information Systems Security Professional), and CISA (Certified Information Systems Auditor) security certifications. As a qualified assessor for the Payment Card Industry, Glover has completed over 100 PCI DSS, PABP, and PA-DSS security assessments. Glover began his career at McDonnell Douglas Aerospace developing AI and expert systems for rocket and propulsion systems. Additionally, Glover spent nearly 10 years in software development with companies such as Novell and Corda, is the author of two US patents, and received a Masters of Science in Mechanical Engineering from Brigham Young University. JB is responsible for SecurityMetrics worldwide sales. He is a 25-year veteran in the high-tech industry delivering high-growth, innovative software for IT and business needs. With a bachelor s degree in computer science from Brigham Young University, one of his earliest jobs was a COBOL programmer for U.S. Steel. JB has held several senior management positions in software development, sales and marketing with companies including: Broadway & Seymour, U.S. Steel, WordPerfect, Novell, Griffin-Hill, and Cogito. As the first dedicated sales person for SecurityMetrics, JB has contributed to consistent triple digit growth. During this growth, SecurityMetrics has assisted more than 1 million merchants in over 85 countries with their PCI compliance. With more than 400 SecurityMetrics employees, JB now focuses on managing growth and strategic sales opportunities. David Ellis is the Director of Forensics Investigations at SecurityMetrics and holds the following certifications: PFI (PCI Forensic Investigator); GCIH (GIAC Certified Incident Handler) QSA (Qualified Security Assessor); and CISSP (Certified Information Systems Security Assessor). In addition to his forensics background, Ellis has over 25 years of law enforcement and investigations experience, was a Commander with the Oakland Police Department, holds a bachelor s degree from Columbia College, and graduated from the FBI National Academy. 6

Products and Services Penetration Testing: testers ethically exam a system for target profiling, target enumeration, automated testing, service research, application analysis of business logic errors, and intelligent exploit attacks through interactive network and application layer testing. PCI Focus: verifies merchant payment card handling processes and tests merchant Internet systems to determine if they comply with the Payment Card Industry (PCI) Data Security Standard (DSS). HIPAA Focus: verifies customer healthcare information is adequately protected and assists healthcare professionals in a risk-based compliance process to adhere to the Healthcare Insurance Portability and Accountability Act (HIPAA) Security Rule. PA-DSS Assessment: validates that software or application processes in accordance with the Payment Application Data Security Standard (PA-DSS) through a detailed security assessment. PANscan Suite: helps businesses locate unencrypted payment card data on business networks through easy-to-use software. Onsite PCI DSS Audit: Qualified Security Assessors (QSAs) verify merchant payment card handling processes, find gaps in security, and create a report on compliance (ROC). SecurityMetrics Vision: searches for vulnerabilities on the inside of merchant card-processing environments. SecurityMetrics Assurance: provides businesses with confidence to operate without fear of compromise through a data protection guide, breach insurance, security consulting, and a card discovery tool. Vulnerability Assessment: checks for external network security holes that could enable backdoors, remote access, SQL injection and other types of malicious attacks. Incident Response: forensic analysts identify and analyze breach points and help prevent further compromise within a business through consultation, onsite examinations, external vulnerability scans, and reports. Security Consulting: provides businesses the expertise to prepare for a gap analysis, create effective security policies, undergo security awareness training, etc. P2PE Assessments: Point-to-Point Encryption Qualified Security Assessors (P2PE QSAs) verify merchant P2PE solutions, assist solution providers in P2PE implementation, and create a report on compliance (ROC). 8

Company History First scan customer is enrolled First bank contract to conduct an onsite security assessment First hardware device with intrusion detection and vulnerability assessment technology First forensic investigation 2002 2003 First PCI DSS audit 2004 2005 2006 2007 First onsite CISP security audit Develops Snoop, an internal forensics tool to discover payment cards on merchant networks Officially named a Qualified Security Assessor (QSA) by the PCI Council Officially named an Approved Scan Vendor (ASV) by the PCI Council Officially named a PA-QSA by Officially named a PA-QSA by the PCI Council the PCI Council 2008 2009 2010 2011 2012 Hits the 1 million merchant mark in in the Merchant Compliance Console Awarded #408 on on the the Inc. Inc. 500 500 Releases PANscan, a, card a card data discovery tool tool Releases Releases TIN Matching, Vision, a network a Tax Identification threat sensornumber validation program Releases Vision, a network threat sensor Releases Releases SecurityMetrics Assurance, a liability a liability reduction reduction program Releases PCI PCI Focus, Focus, a new a new PCI PCI verification and and testing testing program program 2008 2009 2010 2011 2012 Awarded the the Bronze Bronze Stevie Stevie Award Award for for Call Call Center Center of the of the Year Year 2013 2013 Releases Releases HIPAA HIPAA Focus, Focus, a healthcare a healthcare security security compliance compliance program program Awarded Awarded Gold Gold and and Silver Silver Stevie Stevie Awards Awards for Global for Global Sales Sales Team Team of the of the Year Year and and Sales Sales Process Process of the of Year the Year 2000 2001 Vulnerability scanning appliance released Founded by Brad Caldwell First automated scan using the SecurityMetrics scan engine 10

2013 SecurityMetrics 1275 West 1600 North Orem, UT 84057 www.securitymetrics.com

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information