We lead organisations through the complexities of PCI-DSS compliance to prepare our clients to achieve or maintain their certification.
We support our clients by:
- Providing support to project owners and managers: requirements analysis, scope, security solutions, …
- Identification of risks.
- Measuring deviations from the PCI-DSS standard and development of a structured action plan.
- Production or modification of the relevant policies, processes and procedures
- Setting-up security controls
- Coordination and, if using our services, conducting vulnerability assessments and penetration tests.
Norms and standards used :
#ISO27001 /ISO27002
#ISO27005
#ISO31000
#Guide to good security practices (NCSC guidance)