Modulr automates complex payment flows, enables businesses to plug their own software directly into the economy and lets them launch entirely new financial services.

SERVICES PROVIDED:  
PCI DSS ISO 27001
  • INDUSTRY

    FinTech

  • CHALLENGE challenge

    To provide added value, long term, multistream consultancy including PCI, cyber security and technical testing to a rapidly growing organization within a highly regulated industry sector.

  • SOLUTION solution

    High quality service delivery and customer success management across a broad spectrum of cyber security services. Responding dynamically to the client's demands and growth requirements.

THE CUSTOMER

Modulr is at the forefront of building a new digital payment service to ensure money flows more efficiently through businesses and the economy. Modulr provides businesses with seamless payment integration through its market-leading API.

Modulr is authorized and regulated by the FCA (Financial Conduct Authority) as an Electronic Money Institution with permission to issue electronic money and provide payment services. In the Payment Card Industry area, Modulr provides customers with Mastercard virtual card issuing services.

Advantio has been in the privileged position of accompanying Modulr on their rapid growth journey. Selected initially to provide PCI consultancy services and penetration testing services, Advantio’s relationship with Modulr as a trusted service provider has grown year-over-year.

“Advantio has provided Modulr with exceptional Cyber Security expertise, guidance and services. We’re incredibly pleased to be continuing to work with Advantio as a trusted partner as our business grows and develops.”

– Kenneth Ord
Head of IT Security, Modulr

ADVANTIO’S SOLUTION

Modulr’s initial challenge was to ensure compliance with PCI DSS requirements alongside other financial regulatory controls. Advantio was engaged to confirm the scope of the PCI DSS Cardholder Data Environment (CDE) and provide expert guidance on how to comply with the requirements of PCI DSS.

In September 2018, with the support of Modulr’s IT Security and technical teams, Advantio undertook an initial scoping exercise and gap analysis of the PCI Cardholder Data Environment (CDE). Advantio worked closely with Modulr to build a project team of key stakeholders who were vital to the success of this project. This team included security consultants, qualified security assessors, Modulr technical experts, and the Head of IT Security.

As a part of the initial assessment, Advantio’s professional consultants conducted a penetration test of the CDE. As well as a requirement for compliance with the PCI DSS, a penetration test helps to identify any known or critical vulnerabilities within the environment. The results of this scoping exercise, gap analysis, and penetration test allowed Modulr to perform remediation activities needed to comply with the PCI Data Security Standard.

Following Modulr’s successful program of remediation, Advantio’s Qualified Security Assessors undertook the Formal Assessment on Compliance in November 2019. In January 2019, Advantio completed a Report of Compliance and the Attestation of Compliance, confirming Modulr’s compliance with the requirements of PCI DSS.

Through 2018 / 2019, Modulr underwent a period of rapid growth and innovation. Modulr and its trusted advisors at Advantio worked together to ensure the dynamic and changing environment continued to remain compliant with the demands of PCI DSS.

Advantio is proud to contribute to Modulr’s growth and to reconfirm its annual requirement to validate compliance with PCI DSS. These cirical efforts keep Modulr’s core business and customers safe and secure.

Following the successful delivery of PCI DSS consultancy, Modulr further engaged Advantio to provide information and cyber security services to support other aspects of the business. Advantio was pleased to be able to present Modulr with an overview of its full-service portfolio, including the procurement and provision of technical cyber solutions and consultancy service across a broad range of information security standards and regulations, including ISO27001.

Advantio prides itself on providing industry-leading customer service, cyber consultancy, and building trusted partnerships with vendors and suppliers across the spectrum of cyber security services. Advantio has been delighted to work with Modulr to build upon its PCI consultancy services and deliver other value-added offerings to increase cyber maturity.

Additional services provided to Modulr have included increased application security through the implementation of Qualys to provide a single cloud platform to ensure security and compliance across Modulr’s IT assets, and KnowBe4’s social engineering and phishing education platform.

Furthermore, Advantio continues to work with Modulr to develop and implement other cyber security solutions to meet the growing demands of a highly regulated market. This includes the implementation of a industry-leading Governance, Risk and Compliance tool, consultancy on the implementation of ISO27001, and security expertise in Office 365.

Advantio’s experts continually work in partnership with clients to ensure that they can focus on their core business activities and limit the impact of any cyber security program. This is achieved through collaborative account management, clear prioritisation and advice and providing clients with the option to source cyber security services, it deems necessary.

Solution icon
Solution icon

THE BENEFITS

Advantio’s core mission of ‘On Time and On Budget’ drives a culture of customer-lead service delivery. This core mission, alongside a broad portfolio of cyber security services, allows Advantio to build trusted supplier relationships with its customers to meet the growing demands of security, regulation, and compliance.

Advantio’s security experts pride themselves on delivering world-class service to their customers, building relationships that extend beyond a yearly requirement to complete a security assessment. In turn, Advantio is proud to support businesses providing innovative services, ensuring they and their customers are safe and secure in the development of their cyber capabilities.

Benefits icon

expert

BOOK AN EXPERT

Tell us more about you and one of our experts will call you back