Re: PCI Question

[Ted Wilder <twilder () MACALESTER EDU>]

In the past, I've used direct-post (or other options available by credit
card processor services) to move e-commerce sites out of PCI-DSS scope. The
options available are dependent on your credit card processor.


Ted Wilder
Associate Director
Information Technology Services
Macalester College


On Thu, Aug 4, 2016 at 3:44 PM, Barton, Robert W. <bartonrt () lewisu edu>
wrote:

> Afternoon,
>
>
>
> We are working though our PCI DSS compliance, and I was wondering how
> people understood, and then implemented a solution for this statement.
>
>
>
> “Your e-commerce website is not connected to any other systems within your
> environment (this can be achieved via network segmentation to isolate the
> website from all other systems)”
>
>
>
> The wording has led to a few questions, and I want to see what others are
> thinking/doing.  If you do not want to reply to the list, feel free to send
> me a private email.
>
>
>
> Robert W. Barton
>
> Director of Information Security
>
> Lewis University
>
> One University Parkway
>
> Romeoville, IL  60446-2200
>
> 815-836-5663
>
> This message (including any attachments) is intended only for the use of
> the individual or entity to which it is addressed and may contain
> information that is non-public, proprietary, privileged, confidential, and
> exempt from disclosure under applicable law or may constitute as attorney
> work product. If you are not the intended recipient, you are hereby
> notified that any use, dissemination, distribution, or copying of this
> communication is strictly prohibited. If you have received this
> communication in error, notify us immediately by telephone at
> (815)-836-5950 and (i) destroy this message if a facsimile or (ii) delete
> this message immediately if this is an electronic communication. Thank you.