Eurowings successfully certified against PCI DSS

13. February 2017

Left to right: Dr Kai Schubert, PCI DSS Lead Auditor usd AG, Ms Mehtap Secilmis, Head of IT Governance and Information Security Officer Eurowings Group, Lorenz Heiler, Security Consultant usd AG..
Initial conversations were held in July 2016. The PCI DSS audit was launched in September – and already successfully concluded on 5 December.

Dr Kai Schubert, Lead Auditor at usd AG, comments on the course of the project: “The audit took place simultaneously with the merger of Germanwings with Eurowings, which posed a huge task to the IT organisation involved. Nonetheless, the cooperation with our colleagues was highly constructive and efficient. The whole team contributed to this great accomplishment.”

Ms Mehtap Secilmis, Head of IT Governance and Information Security Officer at Eurowings Group, is equally happy with the project results: “Our customers’ data security is our top priority. PCI DSS plays an important strategic role in this. We are glad to have such a strong partner in usd AG who supported us in validating our compliance with PCI DSS. “

Also interesting:

usd PCI Best Practice Workshop 2021

usd PCI Best Practice Workshop 2021

For many years, the usd PCI Best Practice Workshop has brought together responsible PCI personnel from companies of all sizes and from all industries to discuss current topics from the world of payment card industry together with PCI experts from usd. The interactive...

3 Reasons for a Cloud Security Audit

3 Reasons for a Cloud Security Audit

Outsourcing applications and data to the cloud brings significant benefits for companies, but at the same time also new challenges for the corresponding IT departments. The technologies and processes of a cloud environment differ from those of local data centers....

usd HeroLab Top 5 Vulnerabilities 2020: SMB 1.0 & SMB Signing

usd HeroLab Top 5 Vulnerabilities 2020: SMB 1.0 & SMB Signing

During penetration tests our security analysts repeatedly uncover gateways in IT systems and applications that pose significant risks to corporate security. They increasingly identify the same vulnerabilities in different IT assets, some of which have been known for...

Categories

Categories