Contact Us

Talk to us in person at 1.888.732.9406

E-mail

Want a face to face? Visit us at one of our local offices or call us & we will come to you.

Visit Us

Share this page

Home > Services > Consulting > Compliance > QIRA and QFI

Challenge & Solution

Service Details

QIRA and QFI

Challenge

PCI DSS provides organizations that handle cardholder data with a set of principles and requirements designed to assist them in the creation of a secure network. When a breach occurs, pandemonium will erupt, the source may be difficult to pin down and any new transactions over the network could be compromised. During the chaos, you will need to act decisively and likely be required to call in an independent third party to conduct a thorough forensic investigation. Several providers are available, but finding one that will be sensitive to your internal needs, work within your budget and be able to help with remediation will be difficult.

Solution

A breach or network compromise requires immediate action by accredited remediation professionals. As a member of Visa's elite Qualified Incident Response Assessor (QIRA) and MasterCard Qualified Forensics Investigator (QFI) programs, FishNet Security takes immediate action when payment card data breaches occur, investigating the incidents onsite, overseeing remediation procedures and providing final assurance to Visa that compromised systems have been secured and returned to compliance.

Benefits

Avoids fines and disruptions to your payment card transaction processes
Through quick action by QIRA & QFI assessors, minimizes consequences and ensures a return to security and compliance in the event of a breach
Ensures quality, accuracy and thoroughness of your assessment, with proven methodology
Provides certified assessors who help ensure the security, integrity and availability of your information assets
Through trusted partner methodology, ensures that your organization's internal requirements as well as reporting and communications requirements are met

I received notice of breach, what now?

Execute your internal Incident Response Program
Communicate with pertinent entities:
- Select a QIRA/QFI immediately
  
  FishNet Security QIRA contact info:
  1.888.732.9407
  QIRA@fishnetsecurity.com
  
  FishNet Security QFI contact info:
  1.888.732.9407
  QFI@fishnetsecurity.com
- Communicate with Internal or external counsel
Collect / Acquire all suspect devices
Work with legal counsel to determine legal CHD notification requirements
Provide swift response to QIRA/QFI requests
Work with QIRA/QFI to ensure the compromise is contained
Support QIRA/QFI in reporting CHD at risk to the cardholder brands
Remediate any PCI DSS deficiencies or gaps identified by QIRA/QFI

QIRA & QFI services by FishNet Security's dedicated elite forensics experts are designed to help merchants and service providers respond quickly when they have received notice of a breach. Offering vast PCI experience, our consultants guide clients through the critical steps required to reach containment and to return to business as usual. QIRA & QFI services include:

Guidance in responding quickly and systematically to incidents
Quick support in facilitating a quick, efficient recovery from security incidents
Leveraging of information gained during incident handling to provide risk mitigation plans for future events
Participation as a liaison between the breached entity and cardholder brands
Identification of deficiencies in PCI DSS compliance, followed by recommendations for remediation
Assistance in onsite breach containment and extraction of malware
Participation as a liaison between the breached entity, law enforcement agencies and courts

QIRA QFI Methodology

Testimonial

"We trust their advice and can go to them when we have questions."

-Security & Compliance Manager, Insurance Carrier

Services

Have a Breach?

888.732.9407

QIRA@fishnetsecurity.com
QFI@fishnetsecurity.com