Payment Card Industry Data Security Standard (PCI DSS) is a set of logical, physical and procedural security requirements for organizations processing credit and debit card transactions.
All organizations that store, transmit or process cardholder information need to comply with the standard. We provide PCI DSS compliance assessment service. Depending on the specific client requirements this can include:
- Introductory awareness sessions
- Gap Analysis
- Remediation assistance at the mitigation stages
- Compliance audits
- Mapping processes to PCI DSS requirements
- Compliance Report
- Training, policy and strategy development/definition
Getting the scope of your payment system audit project right is key. This ensures that you achieve compliance in an efficient and cost-effective manner. Panacea InfoSec is ideally placed to carry out scoping activities. This can happen either in the initial stages of a PCI DSS audit project or as the project progresses.
Providing a blueprint is one of the first steps along the way to PCI DSS compliance. Our team helps you plan how to achieve compliance given the options available to you. A gap analysis provides a more detailed and itemised report. Thereby, showing the current management of each control area against the standard requirements.
We can act as Trusted Advisors to provide ongoing support and guidance through the remediation phases of a PCI DSS compliance project.
Penetration Testing and Vulnerability Scanning
Our penetration testing and scanning team can deliver an annual programme of penetration testing and vulnerability assessment to help you meet PCI DSS requirements and assess the security of your applications and networks.
PCI DSS Certification Audit
With remediation complete, our PCI QSAs can prepare you for the PCI audit. We as Qualified Security Assessors (PCI QSA), also complete the audit for you and liaise with your acquiring bank to report your compliance status.