2013 UNC Financial Systems Conference Tackling our Financial Challenges March 17 - 19, 2013.

Slides:



Advertisements
Similar presentations
EzScoreboard.com A Fully Integrated Administration Service.
Advertisements

October 28, Who? What? When? Why? Comply with PCI compliance policies set forth by industry Create internal policies and procedures to protect.
.. PCI Payment Card Industry Compliance October 2012 Presented By: Jason P. Rusch.
Payment Card Industry Data Security Standard Tom Davis and Chad Marcum Indiana University.
PCI Compliance: The Gateway to Paradise PCI Compliance: The Gateway to Paradise.
State of Indiana Business One Stop (BOS) Program Roadmap Updated June 6, 2013 RFI ATTACHMENT D.
Navigating the New SAQs (Helping the 99% validate PCI compliance)
This refresher course will:
JEFF WILLIAMS INFORMATION SECURITY OFFICER CALIFORNIA STATE UNIVERSITY, SACRAMENTO Payment Card Industry Data Security Standard (PCI DSS) Compliance.
GPUG ® Summit 2011 November 8-11 Caesars Palace – Las Vegas, NV Advantages of having integrated ePayments and eCommerce By Fauwaz Hussain Nodus Technologies.
Property of CampusGuard Compliance With The PCI DSS.
Centralizing Commerce for the Campus Community. Goals & Objectives Overview of contracted services Benefits for your member institutions Action Plan for.
Credit Card Compliance Regulations Mandated by the Payment Card Industry Standards Council Accounting and Financial Services.
Presented by : Vivian Eberhardt, Supervisor Cash and Credit Operations
PCI Compliance Forrest Walsh Director, Information Technology California Chamber of Commerce.
Data Security Standard. What Is PCI ? Who Does It Apply To ? Who Is Involved With the Compliance Process ? How We Can Stay Compliant ?
Credit Card Changes that Impact You! Changes to Accounts Receivable, Cash Receipts and Student Billing 7.77 Wanda Mahon & Bucky Wall Corporate Readiness.
Mitigating Risk and Improving Efficiency with Third Party Vendors – When is enough… enough? Paul Aries, RVP, Nelnet Business Solutions Ann Holland, Associate.
1 Goal is protection of sensitive data New Rice policy calls for protection of sensitive personally identifying information Confidential information includes:
Payment Card Industry (PCI) Data Security Standard (DSS) Compliance Commonwealth of Massachusetts Office of the State Comptroller March 2007.
1 Consolidated Billing Project UCSB / UCLA Financial Systems Conversion Project Web Management, Hosting and Consulting Service February 8, 2011 CITI.
August 9, 2005 UCCSC IT Security at the University of California A New Initiative Jacqueline Craig. Director of Policy Information Resources and.
GPUG ® Summit 2011 November 8-11 Caesars Palace – Las Vegas, NV Payment Processing Online and Within Dynamics GP PCI Compliance and Secure Payment Processing.
ECommerce Project. The Team Project Sponsors: –Shelagh Holm, Director of Administrative Information Systems –Ron Ritter, Assoc Director and Treasurer,
Chapter 9 e-Commerce Systems.
“Electronic Payment System”
Web Advisory Committee June 17,  Implementing E-commerce at UW  Current Status and Future Plans  PCI Data Security Standard  Questions.
PCI 3.0 Boot Camp Payment Card Industry Data Security Standards 3.0.
- 1 - Gateway to Managed Payment Services Extending your Sales Channels Accept secure on-line internet payments Vision and Strategy YESpay E-Commerce.
An Introduction to PCI Compliance. Data Breach Trends About PCI-SSC 12 Requirements of PCI-DSS Establishing Your Validation Level PCI Basics Benefits.
NUAGA May 22,  IT Specialist, Utah Department of Technology Services (DTS)  Assigned to Department of Alcoholic Beverage Control  PCI Professional.
Solution Overview for NIPDEC- CDAP July 15, 2005.
DMV’s Service Transformation Program AASHTO Auditor’s Conference Tom McClellan, DMV Administrator and Dawn Farr, Interim STP Lead Oregon Department of.
Gaining Efficiency from Technology  Budgets are being slashed but workloads are not changing.  Government can not afford not to invest in new Technology.
Higher Education Solutions 1 Internal Audit for Colleges and Universities By: Wally Wetherill, Regional Industry Partner – East Region John McKay, Supervisory.
Date goes here PCI COMPLIANCE: What’s All the Fuss? Mark Banbury Vice President and CIO, Plan Canada.
DATE: 3/28/2014 GETTING STARTED WITH THE INTEGRITY EASY PCI PROGRAM Presenter : Integrity Payment Systems Title: Easy PCI Program.
will provide: A consistent, robust web-based payment and deposit processing system PCI compliant payment processing and storing of cardholder/bank account.
June 20, 2012 Outsourcing Physical Plant Should I ???
1 The Networked Transaction Environment. 2 Blackboard’s Product Strategy Leading institutions are wiring their campuses to connect people and resources.
Presentation Software as a Service Applications Software-as-a-Service Partner Enablement Program Enabling ‘Software as a Service’
1 Capability Set - Detail. 2 Common Online Problems Desire to generate additional revenue –Must allow for guest deposits to student accounts –Need way.
Purpose: These slides are for use with customers by the Microsoft Dynamics NAV sales force and partners. How to use: Add these slides to the core customer.
PCI Compliance: The Gateway to Paradise PCI Compliance: The Gateway to Paradise.
Fleming Systems Renewal Project Project Evolve An update on Core Information Systems at Fleming Fleming College December, 2005.
Sigur Ecommerce Pvt. Ltd.
Data Security and Payment Card Acceptance Presented by: Brian Ridder Senior Vice President First National September 10, 2009.
Fraud and Risk in the Electronic Payment Space Michelle Marshall-Thompson VP, Fraud/Risk Officer FirstMerit Merchant Bankcard.
Maximizing the Value of Investments in Tax Administration Terry Lutes Principal, M Group.
PCI PROJECT UPDATE Jeff Gassaway, CIPP, CISSP, ISPO 1.
What you need to know about PCI-DSS Jane Drews Chief Information Security Officer Information Security & Policy Office
ThankQ Solutions Pty Ltd Tech Forum 2013 PCI Compliance.
Company Profile. MerchantPro Express (MPX)  MerchantPro Express (MPX) is a credit card payments processing company, powered by industry leader First.
SABRE VIRTUAL PAYMENTS Karen Frayer Sabre Virtual Payments Manager.
Integrated eCommerce for the Campus Community Nelnet Business Solutions - February 13, 2015.
Fall  Comply with PCI compliance policies set forth by industry  Create internal policies and procedures to protect cardholder data  Inform and.
PCI 3.1 Boot Camp Payment Card Industry Data Security Standards 3.1.
UCONN PAYMENT STORE OFFICE OF THE BURSAR. WHAT IS A UCONN PAYMENT STORE? A new payment option for smaller departments to accept credit card payments online.
MARTA’s Road to PCI Compliance
Performing Risk Analysis and Testing: Outsource or In-house
What Do I Need To Comply? A written policy for your unit detailing how you process payments; Cash Handling Training, renewed every two years; A safe,
Payment Card Industry (PCI) Data Security Standard (DSS) Compliance
Internet Payment.
Payment Card Industry (PCI) Data Security Standard (DSS) Compliance
Red Flags Rule An Introduction County College of Morris
Payment Card Industry (PCI) Data Security Standard (DSS) Compliance
MARTA’s Road to PCI Compliance
Event Management Registration System
Event Management Registration System
Presentation transcript:

2013 UNC Financial Systems Conference Tackling our Financial Challenges March , 2013

2 Agenda How do I find out who is taking payments? Centralizing Department Payments –Policy –Process –Communications –Technology Co-Sourcing, Integration, Security & Compliance

3 Online Payments

4 Best Practice

5 “Big Rocks” Tuition and Fees –ERP –Hosted Solution –Policies for face-to-face payments Cashiering Swipe devices Payment Plans Enrollment process Service (questions about account) Red Flag Compliance

6 Best Practice

7 College Budgets Departments Decreased State funding Seeking ways to generate revenue Larger portion of budget Auxiliary Services Promotes college Generates revenue Community Involvement It’s great to have departments generating some revenue…. BUT……

8 Departmental Revenues Want it right now Going off on their own All over the board Don’t involve business office Creates extra work for business office Reconciliation nightmare!!!!!

9 Campus Departments Parking Theater Events Summer Camps Alumni/Development Pottery Store Cheese Store Merchandise Sales Tickets

10 HOW ARE THEY DOING IT????

11 How do I find out who is taking payments? Subtitle And how they are taking them…….

12 Do a search of your website….. Awesome State University

13

14 Review and act upon what you find!!!

15 I know who is taking payments…….. Now what do I do ???? Centralize Campus Commerce & Department Payments

16 Centralize Campus Commerce & Department Payments Policy Process Communication Technology

17 Policy & Process Day-to-day AND new service implementation control is in YOUR hands Administrator establishes “order details” and interface parameters in “test” File transfer & interfaces – HTTPS communication – Hash validation Tools are provided for testing new pages and orders, and migrating them on your schedule 17

18 Value Proposition Departments can now innovate and create revenue enhancement opportunities by selling on-line – securely! 18 Reduces your institutional PCI compliance burden By design, encourages eCommerce best practices Straightforward configuration and rapid deployment drives adoption Reports and “End-of-Day” file support reconciliation and other production requirements Scalability and transparency Distribute administrative and operational support to trusted partners Central visibility into all commerce activities

19 Centralized eCommerce Technology Platform for campus-wide commerce support Hosted order page with flexible data gathering capability Geared to address common university commerce needs (product sales, simple event registration, gift processing) 19 Powerful – multiple usage paradigms As basic “site” combined with payment page As embedded payment form in another website (e.g. in an iFrame) As a behind-the-scenes payment service (pay now button) Versatile financial design Flexible configuration defines reporting and settlement structure Can be leveraged to consolidate MIDs, reduce expenses, enable “rollups”

20 Department Commerce Front End Demographic information Name, rank and serial number SSN? Student ID? Back end Payment information Account Information and card holder data Address and zip CVV?

Co-Sourcing, Integration, Security & Compliance &

22 Strategies for Compliance Accept the risk Transfer the risk Avoid the risk Mitigate the risk

23 Co-sourcing & Compliance A Trusted Partner Part of your overall compliance solution Protect YOUR sensitive data Proven track record Knowledgeable Customer Service focus Reliable SICAS Summit 2011 – The Power of SUNY

24 Co-sourcing: Secure & Convenient - Security Core Business – PCI Level 1 Compliant Provider Fully Hosted Higher Ed Focused Convenience Integration with your ERP Integration with 3 rd party vendors Campus Commerce self-service Centralized reporting & reconciliation

25 Co-sourcing: Secure & Convenient - Value Added Merchant Services Compliance consulting Forms processing Securing YOUR data End-to-end encryption Data at rest Data in transit Vulnerability scans Penetration testing Secure coding practices Background checks Best Practices Redundancy Physical Security

26 Third Party Vendor Integration -

27 Limiting your scope Co-source with PCI-DSS Level 1Compliant Providers Level 1 Providers process >300K transactions annually Most stringent audit requirements Prove compliance annually - (QSA) Avoid Payment Applications that reside locally Ensure PA-DSS compliance where this cannot be avoided PTS Compliant Devices Ensure PED (Pin Entry Devices) are up-to-date and compliant Policies & Procedures Develop AND follow them

28 Limiting your scope Training Develop in-house training program for anyone who handles card holder data Self-Assessment Questionnaire (SAQ) Complete it annually Incident Response Plan Identify key stakeholders Have a plan “Compliance is a journey..not a destination” Ron King, COO, CampusGuard

29 About Nelnet Business Solutions -

30 Contact Brian Barry, Regional Vice President

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.