PCI DSS globally applies to any company that stores, processes or transmits cardholder information.
COBIT is an IT Governance Framework that is used by businesses for implementing IT systems and strategies.
Many organizations are looking at the COBIT and ITIL frameworks and trying to decide which one is best for them.
SOX was designed to improve the accuracy and reliability of corporate disclosures in financial statements.
All public companies doing business in the United States must comply with the Sarbanes-Oxley Act (SOX).
With SOX compliance, a strong internal control environment can enhance confidence in internal financial reporting.
Privately held companies considering or preparing for their initial public offering (IPO), need to comply with SOX.
PCI Compliance Level 1 was established in effort to protect the security of credit card data and cardholder data.
Merchant Level 2 generally applies to merchants processing, storing or transmitting 1-6 million transactions a year
PCI DSS compliance Level 3 applies to mid-size merchants that process somewhere between 20,000 and 1 million / year
PCI Compliance Level 4 is the lowest level of compliance under PCI DSS.
There is no PCI DSS certificate, because credit card & cardholder data security is an ongoing process.
