PCI DSS Consulting Overview
We provide PCI DSS consulting and implementation support. This includes gap analysis, technical and procedural risk assessment, vulnerability assessment, detail recommendations, policy/documentation support, gap implementation monitoring, training, coaching security managers/technical teams, and internal audit leading to zero defect certification.
What is the approach for successful certification?
There are primarily four phases, and in each phase there can be several sub-phases:
Phase I – Determination of Scope /network segment
Phase II – Performing a gap analysis against existing controls. The activity results in determination of gaps and recommendations
Phase III – Implementation/measurement journey through definition of policy/procedure/documentation on one hand and the implementation of the gaps on the other;
Phase III – Internal Audit is the process of verifying successful implementation, on one hand, and the inclusion of security principle in business lifecycle on the other.
Phase IV – Certification. Total duration of each milestone can vary depending upon the complexity of the organisation. Talk or write to us at firstname.lastname@example.org to know how we can take you through a successful journey.
PCI – High Level Overview