“RSI Security helped us get policies and procedures ready, set us up to gather the evidence we needed, and then facilitated every step of the PCI assessment.”
- Guido Solares, Director of Information Security
Challenges
Tilly’s is a specialty retailer of casual apparel and accessories founded in 1982 and rooted in Irvine, California. Tilly’s focuses on emerging global and California-based brands targeting active and social lifestyles, and it currently operates 244 stores across 33 states.
Tilly’s e-commerce presence helps consumers across the country access iconic styles at affordable prices, regardless of their location. To better serve its customers across the US, Tilly’s set out to improve its e-commerce platform with greater security and data privacy, including seamless compliance with the Payment Card Industry (PCI) Data Security Standards (DSS).
Maintaining PCI compliance requires robust security program management, including ongoing assessment and risk management, along with document preparation and audit readiness. Tilly’s sought out a managed security service provider (MSSP) to optimize its cyberdefenses.
“RSI Security helped us get policies and procedures ready, set us up to gather the evidence we needed, and then facilitated every step of the PCI assessment.”
– Guido Solares, Director of Information Security
Outcome
With RSI Security’s help, Tilly’s was able to complete their PCI assessment well before the deadline, with no findings or additional adjustments needed. Tilly’s now sports a robust, efficient cybersecurity program that maximizes data privacy and integrity while also alleviating burdens across their technical staff. Policies and procedures are clear and easily accessible, and evidence is documented and ready to streamline all future PCI compliance assessments.
RSI Security’s managed services ensure that Tilly’s cybersecurity program operates efficiently with workloads spread out evenly across regular intervals. That way, audits are quicker and less expensive, and areas like training are easily replicable and scalable for ongoing cybersecurity.
“RSI Security’s managed services make everything easier on our staff. We saw a huge improvement for tech staff across the board, as that part of their work is now managed throughout the course of the year instead of dumped on them all at once.”
- Guido Solares, Director of Information Security