As the payments industry continues to get a handle on fraud, it’s finding the cracks still open to criminals. Secure technologies like EMV, encryption and tokenization have covered many security holes. Yet, level 4 merchants – the smallest businesses – are now experiencing the bulk of data hacks.
In ongoing efforts to thwart those data breaches, Visa has mandated that after January 31, 2017 all small business merchants must have payment applications and terminals installed by a PCI-certified Qualified Integrator and Reseller (QIR) professional. The PCI Security Standards Council (PCI SSC) is responsible for qualifying QIR professionals according to PCI DSS compliance requirements.
If this sounds overwhelming, the good news is that OpenEdge is here to help.
QIR Solutions from OpenEdge encompass both access to certified payment security professionals on staff at OpenEdge and assistance with certifying a developer’s staff:
QIR Certified Professionals at OpenEdge
OpenEdge employees handling payment installations have achieved QIR certification, which involves successful completion of the course from the PCI SSC and passing the QIR exam. These security professionals are available to software developers and their customers requiring installation of payment applications.
QIR ASSIST
For developers who wish to pursue QIR certification, OpenEdge offers QIR ASSIST, a support program to get a developer’s staff certified and ensure that developers have access to payments security best practices. QIR ASSIST includes:
- Consultation with PCI security experts
- Education on topics such as: secure remote access, malware prevention, encryption and tokenization
- QIR exam preparation
- Post-certification marketing assistance to promote the developer’s new status as a Qualified Integrator and Reseller
Global Payments’ President of Integrated Solutions & Vertical Markets, Sid Singh, sums up QIR Solutions: “The PCI Security Standards Council has taken steps to prevent breaches among the most vulnerable group of businesses. The QIR Solutions program supports our developer-partners whether they require access to the security professionals at OpenEdge, or wish to certify their own people. In either case, small businesses will have their payment applications installed and serviced in accordance with PCI standards.”
