Retail Point of Sale System Information Security Services

It is aimed to ensure the security of the information systems infrastructure of the headquarters, store, cash register and external system integrations for the operation of the retail point of sale.

Service Scope:

• Establishing the retail point of sale system information security policy,
• Identifying roles and responsibilities,
• Creation of responsibility matrices,
• Developing a policy against malware,
• Establishment of access management policy,
• Managing information security breach incidents,
• Identifying and managing corrective actions,
• Capacity management and planning,
• Making performance evaluations,
• Creating asset inventories,
• Creating risk inventories,
• Creating the backup policy (backing up the configurations of data and network devices),
• Preparing the standards of network equipment such as firewall, router,
• Preparation of establishment standards for all equipment included in the system such as server, PC (Desktop/Mobile), mobile device,

Scope of Complementary Services:

Periodic review of the programs installed in the system

Periodic review of operating system services

Periodic review of access rights

Periodic review of Asset and Risk inventories

Re- and residual risk assessments

Carrying out risk probability mitigation activities

Periodic penetration (internal and external penetration) tests and reporting

Carrying out activities to ensure compliance with legal processes

examining the use of internet and data lines, identifying bottlenecks (identifying saturated situations)