News Releases

SecurityMetrics Ranks #754 on New Inc. 5000 List; Growth Fueled by PCI DSS Compliance Services for Banks & Merchants


Aug. 19 /PRNewswire/ -- SecurityMetrics, a provider of Payment Card Industry Data Security Standard (PCI DSS) compliance services for safeguarding credit cardholder data, announced today that it placed No. 754 on the just-published 2009 Inc. 5000 list of the 5,000 fastest-growing private companies in the country. The ranking stems from a three-year sales growth of 383% driven by SecurityMetrics' solutions for helping acquiring banks and credit card merchants meet PCI DSS validation requirements quickly, easily and affordably.


"Complying with all of the rules and regulations of the PCI DSS standard can be a complex and time-consuming endeavor," said Brad Caldwell, CEO of SecurityMetrics. "Our growth is directly related to the technology and processes we have developed to perform these validations, minimize the burden on both the acquirer and the merchant, and help reduce the vulnerability of both parties to credit card fraud and associated regulatory penalties."


PCI DSS is a global standard created by credit card companies to help prevent the theft of cardholder information. The standard was established by a council consisting of American Express, Discover Financial Services, JCB International, MasterCard Worldwide, and Visa, Inc.


SecurityMetrics' PCI DSS compliance validation services have been adopted by banking acquirers around the globe to help the merchants use credit card processing services that conform to PCI DSS requirements. The company introduced the first mass-merchant compliance model for PCI DSS in 2004, and now offers a comprehensive PCI compliance program that includes live 24x7 technical support, weekly reminders, consulting services, and outbound live calling for education and enrollment.


The program serves acquirers and both large and small merchants with any level of IT experience, accurately matching the merchant business with the right PCI validation requirements, and proactive strategies to improve merchant data security. The company currently logs more than 100,000 calls each month from acquirers and merchants.


SecurityMetrics also provides non-PCI-related penetration testing to improve data security, security audit programs, compliance oversight, and rapid response programs that mobilize security experts quickly to assess an attack with a complete forensics investigation.


The 2009 Inc. 5000 ranks privately held U.S. companies according to percentage revenue growth from 2005 through 2008. To qualify, companies must have been founded and generating revenue by the first week of 2005, and therefore able to show four full calendar years of sales. Additionally, they have to be U.S.-based, privately held, for profit, and independent -- not subsidiaries or divisions of other companies -- as of December 31, 2008. Revenue in 2005 must have been at least $200,000, and revenue in 2008 must have been at least $2 million.


Complete results of the Inc. 5000, including company profiles and an interactive database that can be sorted by industry, region, and other criteria, can be found at


About SecurityMetrics

SecurityMetrics, Inc. is a leading provider of Payment Card Industry (PCI) Data Security Standard (DSS) security solutions. SecurityMetrics is certified to perform PCI Scans (ASV), PCI audits (QSA), Payment Application Best Practices audits (QPASP), MasterCard Point of Sale Terminal Security Program audits, penetration tests and forensic analysis. SecurityMetrics also offers a security appliance that includes vulnerability assessment, intrusion detection and intrusion prevention capabilities. SecurityMetrics is a privately held corporation headquartered in Orem, Utah.

For further information: contact SecurityMetrics at (801) 724-9600 or visit