Onformonics
Who are Onformonics?

Onformonics are payment risk specialists who assist companies in proactively managing IT risks within their businesses arising from the processing of card payments. This is achieved by providing a solutions framework to execute and manage a compliance program to many of the card payment industry standards; these include PCI DSS, PA DSS, PED, Visa Pin Security, MasterCard SPT, Visa AIS and MasterCard SDP. In conjunction with the ability manage a compliance program our solutions assist companies in leveraging their compliance efforts to identify and manage key IT risks within their organisation.


Recent events in the industry have shown that compliance is not an annual effort but requires constant monitoring, measurement and risk analysis to ensure that cardholder data is protected through out the payment lifecycle. It is also required to ensure that all processors within the payments chain are managing their risks and through this ensuring cardholder data is secured. Our solutions assist all participants in compliance lifecycle including regulators, auditors, processors, merchants and banks.


Onformonics core strength comes from the expert industry knowledge of its promoters. With over 12 years of industry experience in managing compliance  and IT risk programs within the card payments industry, we understand the landscape and the challenges which the card payment industry faces. Our innovative web based solutions provide our clients with the ability to rapid create a workflow based compliance program based around the Payment Card Industry Security Standards Council (PCI SSC) prioritised approach. These solutions break down a compliance program into individual tasks which can be assigned to individuals or groups, assgined a deadline and tracked to completion, thus ensuring that the compliance program meets its deadline.

 

As all our solutions are web based they facilitate ease of communications between all participants in the compliance process. Compliance officers, auditors and third party service providers can all participate in the compliance program by simply logging on with their web browser. Centralised evidence collection, reporting and task managemet ensure that there is single point of control for the compliance program.