PCI DSS Compliance Consultancy

Testimonials

Bluefin
"We worked with ITSE on a number of projects including recently a PCI DSS project for one of our offices and were impressed with their level of skill and knowledge both on a policy side coupled with an deep technical ability.· We value, and will continue to work with ITSE and treat them as an extension of our IT Team"

Login

When it comes to dealing with customers' payment card information, many of us know this must be dealt with carefully. If this data is lost or stolen, companies face legal and unlimited financial penalties. For these exact reasons, the PCI Security Standards Council has created the PCI DSS Security Standard for dealing with payment card information. PCI compliance is now mandatory if handling payment card information with heavy fines for non-compliance.

To be able to comply with PCI Standards, organisations must meet every aspect of the audit, however understanding all of the areas can prove to be difficult and misleading.

A PCI DSS audit can provide an organisational team with confidence in effectively closing security cracks in the network infrastructure. A document known as the Report on Compliance (ROC) is used to monitor the audit, allowing for a clear definitive set of steps to be laid out in order to reach a PCI compliant status.

ITSE provide a PCI DSS consultancy service in order to facilitate in reaching a full compliance status. Our consultants use the set of Strict Quality Assurance Guidelines set by the PCI Security Standards Council to ensure that the audit processes are carried out correctly.

Gap audit
A gap audit is implemented in order to understand what needs to be fixed on the network, as well as understanding the environment in which the sensitive information is stored.

Remediation
Once the gap audit has taken place, our consultants will then be able to suggest appropriate remediation strategies and recommendations to achieve compliance. These are recorded in the ROC, giving a 30 day grace period to resolve the issues. If they are not resolved in this time, another full audit must take place.

Documentation
A final analysis of the environment is then taken and recorded in the ROC to ensure the organisation is prepared for an external audit. Documentation is then produced to show that PCI security standards have been achieved.

This service is offered on-site, where ITSE's dedicated consultants will provide a complete professional solution, tailored to fit each business.

If you are interested in discussing your particular requirements, or would simply like more information, please either email us This e-mail address is being protected from spambots. You need JavaScript enabled to view it or give us a call on 0845 519 7341