December 30, 2009 Company InformZaschita completed a project on the preparation and the certification of CJSC "Armenian Card" (Yerevan) in compliance with international safety standard payment cards – PCI DSS century. 1.2, for results of which the company received a certificate of compliance. CJSC "Armenian Card" is the first company in Armenia, received the certificate of compliance with the PCI DSS. Conduct a successful certification is the result of joint project of CJSC "Armenian Card" and ZAO NPC InformZaschita. The project was implemented in several key stages and lasted more than two years. The audit for 2008 was drawn up a detailed plan to correct the discrepancies, A working group of employees "Armenian Card" and "InformZaschita. In the next stage were carried out all necessary works to eliminate inconsistencies, including instrumental assessment was carried out protection of the environment of data processing of payment cards, including scans of publicly available network nodes "Armenian Card" and testing the possibility of obtaining unauthorized access to cardholder data. On final stage of the project was conducted the certification audit, the results of which have been identified no non-compliance standard, which allowed the company InformZaschita make a positive conclusion and issue "Armenian Card" certificate of compliance with the PCI DSS.
According to project leader of the InformZaschita QSA-auditor Igor Eliseev:" The project was made possible through a coordinated joint work of employees "Armenian Card" and experts InformZaschita, as well as the professionalism of the project participants and focus on results. " According to Maxim, Emma, director of the Department of Audit InformZaschita: "The specialists of Informzaschita" and "Armenian Card" had to make serious efforts to ensure compliance with all PCI DSS requirements in view of features of infrastructure "Armenian Card "in the given budget framework. One of the key success factors of project I would call the approach to the implementation plan for achieving compliance, which ensures close interaction between client and auditor and periodic monitoring by the auditor not only on the basis of the plan, but during the time of its implementation. " Also, Maxim Emm said that "Armenian Card" is the first in Armenia and among the top ten companies received a certificate of compliance with PCI DSS requirements in Russia and CIS. Executive Director of the "Armenian Card" Shagen Hovhannisyan said that since the adoption of the standard PCI DSS (2006), the company set a goal – fully comply with the PCI DSS. To this end, the company carried out work on staff training, introduction of a strict system of quality control, updating the system software and hardware. In result of strict implementation of the above works was to obtain Certificate of Eligibility (Certificate of Compliance). Work to achieve PCI DSS compliance led to a new level of workflow and positive impact on the quality and safety services to the company ZAO Armenin Card ". And as the Certificate of Compliance issued for 1 year and is subject to annual audit, Shahen Hovhannisyan assured that the company "Armenin Card" will continue to work on retaining and validating the results.