Don’t navigate the compliance issues surrounding information processed through ATMs and POS terminals alone. BKD professionals can help you evaluate your financial institution’s technical, operational and security-related policies and procedures.
Our TR-39 certified auditors have the necessary tools to help you evaluate vulnerabilities in storage and encryption. Areas you should look to protect include:
- Customer PINs
- PIN encryption keys
- Key encryption keys
BKD’s IT Risk Services team can help you test and document for:
- PIN Security Compliance: An audit can verify that the electronic storage and transmission of PINS is securely conducted in accordance with ANSI standards.
- Key Management: A review can verify that the generation, storage, transportation, usage, and destruction of keys complies with ANSI standards.
The Pulse and STAR networks require all processing members to comply with a TR-39 audit every two years, and the NYCE network requires the same of all directly connected processing members. Contact BKD for your next TR-39 compliance review.
Our article, “Pulse Network Now Requires Audit,” summarizes the change to compliance standards surrounding transactions and information processed through ATMs and POS terminals.