To help you better understand the steps you need to take to be compliant, we offer several PCI Audit pre-assessment services where you’ll receive specific remediation recommendations so that you have an opportunity to fix them prior to your official audit.
- PCI Site Assessment
Site assessment involves discovery of all the items that are considered relevant by PCI/DSS v1.2 and documenting them in preparation for scoping and audit execution. Site assessment may be executed partially off-site through telephone interviews and policy reviews, and partially on-site via physical inspections and verification of data collected during off-site reviews.
- PCI Readiness Analysis
After the site assessment, our team continues with their “mock audit,” executing the complete PCI Certification Audit process including the development of a PCI deficiency report. The application layer requirements of PCI/DSS v1.2 can be particularly confusing for organizations and we can help you understand where you may fall short of compliance.
- PCI Remediation And Validation
Whether we have conducted a mock audit or you’ve executed the self-assessment, we can help you build a roadmap toward compliance with PCI remediation recommendations that will unblock the compliance issues in each area.. Certain groups within your organization may require technical training while others may have interest in security assessments for mission-critical applications. These education and assessment services are available to you as additional value-added solutions.
Once you’ve been through the readiness process, you’re now ready for the all important final exam, The Audit. We don’t just turn you over to a QSA to go through the process alone. TBG Security has partnerships with a number of QSA firms and we’ll be there every step of the way to guide you through the final audit process and when necessary we’ll prepare or provide the necessary documentation to meet the PCI Security Council standards for compliance.