Case Study: Corporate Travel Management Organization achieves PCI-DSS compliant payment processing with Squadex

Corporate Travel Management Organization - Customer Case Study

Corporate Travel Management Organization is a business travel management provider that needed to accept customer payments directly without relying on third-party services. To do that securely, it had to make its AWS-based infrastructure PCI-DSS compliant, improve access controls and network isolation, and ensure transactions and sensitive card data could be tracked and stored safely. Squadex provided DevOps consulting services to help modernize the company’s infrastructure and security processes.

Squadex reworked the AWS environment by creating separate VPCs and segmented subnets, implementing logging, monitoring, alerting, VPN access with two-factor authentication, backups, and security controls, while also supporting PCI-DSS documentation and certification efforts. Squadex also enhanced CI/CD pipelines and added code-quality and vulnerability checks. As a result, Corporate Travel Management Organization obtained PCI-DSS certification, gained legally compliant direct payment processing, reduced dependency on third-party payment systems, and improved fault tolerance and data protection.