PCI Compliance /Payment Security
Fortune 500 companies count on us to get it right. Implementing and maintaining secure networks, payment applications, payment devices, policies, and vendor relationships does not happen by accident. Allow us to work with your team to formulate a directed approach that includes full PCI-compliance, optimal payment security, peak efficiency, and minimized cost.
Payment Application Development
Trust your software development project to proven experts. Diverge has spent two decades managing software development, and specializes in developing secure, reliable, scalable applications for e-commerce, customer relationship management, and third-party integrations. Contact us for a custom bid.
Payment innovation & leaderSHIP
Sam has had the privilege of being part of the internal team that built and released the first PCI validated point-to-point encryption solution in North America, as well as working with other solution providers to attain this challenging validation. Sam's role has included writing cryptographic procedures, overseeing key management and policy compliance, and operating in a strategic role to help architect and launch the world's first PCI-validated P2PE 2.0 decryption-as-a-service (DaaS) "virtual HSM" solution.
Somewhere between internal distractions and your auditor's idealism is the optimal mix of security, risk-management, and efficient business operations. Sam is a certified as a qualified security assessor (QSA), a P2PE QSA, and PCI Professional (PCIP), allowing him to operate in a unique position as both liaison to your QSA, as well as a surrogate team member to assist with the design of effective solutions for secure payment processing. Other services include drafting policy documentation, penetration testing, network design, and in general demystifying the world of PCI compliance.
Since 2006, when Diverge built the first-of-its-kind SaaS mobile EBT acceptance system on the Ingenico i7910 platform, we have never stopped innovating. Sam's recent product work includes a jQuery-driven e-Commerce API, and the world's first PCI-P2PE/EMV semi-integrated/standalone countertop terminal for retail and small businesses (including signature capture and printer). Roles included drafting business requirements, conducting vendor analysis, running RFPs, document writing, product management, and QA.
Designing, building, or testing a payment solution requires understanding of the underlying software/hardware architecture, but also the impact of data flows on PCI compliance, EMV certification, and card brand compliance. We have worked with numerous software companies to architect payment solutions for security, compliance, and cost-effectiveness. Whether as the application architect, PCI consultant, business analyst, or project manager, we know how to navigate the pitfalls to ensure timely and on-budget project delivery.