GRC International Group PLC on Monday said that its IT Governance business is now providing payment card industry Qualified Security Assessor services in the US.

GRC is a governance, risk management and compliance company based in Ely, England.

The company is now authorised to operate in the US and appears on the PCI Security Standards Council website.

GRC said: ‘All businesses that accept payment cards are vulnerable to hackers trying to steal financial information and commit identity fraud. The payment card industry Data Security Standard (PCI DSS) introduced by the PCI SSC, exists to ensure that businesses process credit and debit card payments effectively to protect cardholder data.’

‘All organisations that accept, store, transmit, or process cardholder data must comply with the PCI DSS’, it added.

The license means that GRC can extend its Qualified Security Adviser services to the US. It can undertake security audits on companies that process payment cards and certify that they are compliant with the PCI DSS.

GRC said that this investment will ‘accelerate’ the growth of its US business, which is one of the company’s medium-term strategic priorities.

Chief Executive Alan Calder said: ‘This QSA license will enable us to provide a wider global service for existing customers and partners who have growing e-commerce and payment services business in the US. These types of PCI Consultancy contracts tend to be large and multi-year.

‘It is also a demonstration of our international development strategy as we see considerable opportunities across the substantial US market,’ Calder added.

GRC shares were untraded at 29.50 pence each in London on Monday morning.

Copyright 2022 Alliance News Limited. All Rights Reserved.