PCI DSS Implementation

PCI DSS standard rollout

The PCI DSS requirements apply to all companies that process, store or transmit cardholder data.

We will help improve your cybersecurity in a short time and at the best price to fully comply with the requirements of PCI DSS.

Core features of our work

3

Companies that had us implementing PCI DSS for them (and successfully passed certification)

6

Average rollout time (3 to 12 months)

5

Years of rollout and audit experience

Implementation and certification plan

Defining the scope and PCI DSS documentation developing

  • Determining the scope of PCI DSS standard
  • Providing recommendations on the organization and construction of an information system in accordance with PCI DSS standard requirements
  • Developing the necessary top-level management documentation (policy) for managing IT / IS processes in accordance with PCI DSS standard

Implementing information security processes to ensure compliance with PCI DSS requirements

  • Implementing IT / IS processes to meet the requirements of PCI DSS standard
  • Risk assessment
  • Development of mid-level documentation for managing IT / IS processes
  • Conducting staff training for PCI DSS requirements

Periodic technical activities according to the PCI DSS standard

  • Wi-Fi Network Scan – quarterly
  • Network segmentation test – twice a year
  • Internal Vulnerability Scanning – quarterly
  • External ASV Vulnerability Scan – quarterly
  • Internal review of compliance with the requirements of PCI DSS – quarterly

Security assessment (conducting a penetration test) of an information system within the scope of the PCI DSS standard

  • External penetration test – once a year
  • Internal penetration test – once a year
  • Vulnerability assessment and attack modelling on WI-FI – once a year

Full support of the certification process

Active Audit Agency, LLC.

implements the PCI DSS standard and prepares the Customer for the certification audit

SRC

SRC Security Research & Consulting GmbH (Germany)

Recommended QSA Certification Body

Visit

Post-certification compliance support

PCI DSS requires ongoing support of all implemented processes and annual recertification. We offer the following services:

PCI-DSS-CHART-1-550x550

Our certifications

Our instruments

Order a service

Request for quotation

Fill the form and we will contact you.