Close

Compliance and handling sensitive data

We lead organisations through the complexities of PCI-DSS compliance to prepare our clients to achieve or maintain their certification.

We support our clients by:

  • Providing support to project owners and managers: requirements analysis, scope, security solutions, …
  • Identification of risks.
  • Measuring deviations from the PCI-DSS standard and development of a structured action plan.
  • Production or modification of the relevant policies, processes and procedures
  • Setting-up security controls
  • Coordination and, if using our services, conducting vulnerability assessments and penetration tests.

Norms and standards used :

#ISO27001 /ISO27002

#ISO27005

#ISO31000

#Guide to good security practices (NCSC guidance)