Skip to Main Content
0
United Kingdom
Select regional store:

Find the expert you need

Choose a service
Or choose a subject

If you need technical support, please visit our Contact us page.

Fill in the form to request a callback, and we will
get in touch with you in less than 24 hours.

GRC Solutions x Digital Trust Consulting. One partner for complete cyber resilience
Shop > PCI DSS > PCI DSS consultancy > PCI Compliance Audit and ROC

PCI Compliance Audit and ROC

(5.0 stars)
• 2 reviews
SKU: 4571

A PCI DSS audit conducted by an IT Governance QSA provides a thorough assessment of the controls you have implemented and establishes whether they meet the requirements of the Standard.

"We recently had to deliver a PCI compliance project on a VERY short timescale - Could not have done it without these guys!! Many thanks!" - Chris

For more information about this service or to get a tailored quote for your organisation, please enquire below and one of our experts will be in touch shortly.Enquire about this service
Description

Your challenge

A PCI Report on Compliance (ROC) is required by organisations with large transaction volume and must be conducted by a Qualified Security Assessor (QSA) who will issue a formal report to the PCI Security Standards Council (PCI SSC) to attest that your organisation is in full compliance.

Our QSA consultants are experienced assessors that can readily understand your business and the payment solutions and technologies you use, which ensures the highest quality of assessment. By completing the audit, you can gain:

  • A complete review of your cardholder data environment and the risks that you need to manage.
  • An accurate assessment of where you stand in relation to the requirements.
  • Evidence that your controls are in place and working effectively.
  • Independent recommendations on procedures and solutions that will help you close identified gaps.

Our service offering 

  • Validation of scope accuracy
  • Data flow diagrams
  • Network diagrams
  • The processing and flow of cardholder data through systems and processes
  • Cardholder data storage locations
  • Third-party or service provider dependencies
  • Network infrastructure
  • Required policies and procedures
  • The maintenance and management of the cardholder data environment (CDE)
  • Evidence that policies and procedures have been implemented
  • An overall assessment of the existing ISMS’s applicability to and procedures required for the PCI DSS 
Why choose IT Governance?

Why choose IT Governance?

  • As an approved QSA company, IT Governance adheres to a number of rigorous business and technical requirements as specified by the PCI SSC.
  • We have extensive ISO 27001, PCI, penetration testing and business continuity management/disaster recovery expertise.
  • Our extensive expertise means we can help you cost-effectively integrate your ISMS with other security frameworks.
  • We are able to translate technical concepts into business terms.

You may also be interested in

PCI DSS Documentation Toolkit
From £395.00>
PCI DSS Scope Assessment and Reduction
PCI DSS Gap Analysis
Online Consultancy by the Hour
From £225.00>

Customer Reviews

(5.0)stars out of 5
Number Of reviews: 2
Please login to your account to leave a review.
1. on 07/12/2022, said:
5 stars out of 5
Great service and communication! Catered for us as requested, amazing work from Stephen, Joy and Loretta in fulfilling our certification. Would recommend.
2. on 17/02/2017, said:
5 stars out of 5
We recently had to deliver a PCI compliance project on a VERY short timescale - Could not have done it without these guys!! Many thanks!
Showing comments 1-2 of 2
Loading...