Michigan State Project Overview Executive Summary


Praetorian Secure completed a Payment Card Industry Data Security Standard (PCI-DSS) Study for Michigan State University. The goal of the PCI Study was to develop a more holistic view of risk related to an application that processes credit cards for events at the University.

The outcome needed to define a high level opinion on adherence to PCI requirements. To provide feedback on how the university could improve the compliance status of the system Praetorian Secure prepared a Security Study Summary Report with executive opinions and mitigation recommendations.

Praetorian Secure leveraged its experience and knowledge of IT security and regulatory compliance to enhance the assessment of the system and environment.

The final study report provided the system’s stakeholders with a risk evaluation of the adequacy of the segmentation, management, operational, and technical controls used to protect the confidentiality, integrity, and availability of the system and the data it stores, transmits or processes.

The executive summary provided recommendations for improving compliance with PCI DSS v2.0.


  • PCI QSA Certification
  • Certified Information System Security Professional (CISSP)
  • Technical Vulnerability Assessment
  • Security Process Documentation Review
  • Security Rule Evaluation
  • Risk Analysis
  • Mitigation Consulting

Customer Testimonial

I have been working with Praetorian Secure, LLC since last spring and I have been very happy with them. They were agreeable to working within the constraints of our industry sector and to help develop a package of services that met our needs and fit our budget. Their staff are experts who brought their experience in diverse market segments to bear in our organization, delivering a big bang for the buck that went beyond our expectations. They worked hard to understand us so they could give us not just what we wanted, but what we needed as well.

Michigan State University -PCI Compliance Officer


  • Develop a holistic view of risk
  • Define high level adherence to PCI DSS v2.0 compliance
  • Better understand management, operational, and technical controls
  • Evaluate confidentiality, integrity, and availability of the system
  • Information

    Date: February 14, 2013