PCI-DSS Compliance

All organisations storing, transmitting or processing debit or credit card data are required to comply with the PCI-DSS Security Standard, or face fines of £50,000 or more.

We can help you with your compliance requirements whether you are already compliant or still have that hill to climb.

Already Compliant?

Our services include:

• Regular reviews against the SAQ to meet ongoing compliance requirements;
• Completion of the Annual Attestation of Compliance (you may need this to demonstrate compliance to prospective customers)

Not Compliant Yet?

Our services include:

• Prioritised Assessment of compliance, identifying any gaps and remediation requirements;
• Physical Security Review to comply with Requirement 9 – a major non-IT related part of the standard;
• Identification and documentation of Compensating Controls;
• Ad hoc help and guidance on remediation implementation;
• Re-assessment of compliance after you have implemented all remediation requirements.

Many of the ISO 27001 controls map directly with the 12 requirements in the PCI-DSS.  So, if you are already complying with ISO 27001 or intending to, you may find compliance to PCI-DSS less arduous.

Our consultants are qualified ISO 27001 Lead Auditors with many years experience of delivering information security services and a thorough knowledge of PCI-DSS requirements.

© 2009 Advent IM Ltd | Tel: 0121 559 6699

Website Design by Clickfire