PCI GAP Assessment

PCI GAP Assessment

Cognosec’s PCI Gap Assessment is available for both remote and onsite activities. To create the most accurate assessment possible, it also includes interviewing system architects, systems administrators, testing personnel, and support staff.

Cognosec Services

Cognosec Services

Features

The Payment Card Industry Data Security Standard (PCI DSS) applies to all organisations that store, process and/or transmit cardholder data. The framework covers technical and operational system elements connected to cardholder data. If you store, process or transmit credit card data you are subject to this standard. Cognosec is a Qualified Security Assessor (QSA) and as a QSA we are authorised to help your company obtain and maintain PCI DSS compliance. Cognosec GmbH can provide you with a full PCI DSS audit portfolio on top of the consultancy service we already offer –creating a rounded and comprehensive compliance package. Cognosec is an Approved Scanning Vendor (ASV) – an organisation with a set of security services and tools available to validate adherence to the external scanning condition of the PCI DSS requirement 11.2. The scanning vendor’s ASV scan solution is always tested and approved by the PCI SSC before an ASV is added to the list of approved scanning vendors. As Cognosec is a Qualified Security Assessor (QSA) for the PCI-DSS and PA-DSS as well as an Approved Scanning Vendor (ASV)– making Cognosec a one-stop-shop for your PCI compliance needs.  Cognosec can provide you with a full PCI DSS audit portfolio on top of the consultancy service we already offer – creating a rounded and comprehensive compliance package. We are authorised to help your company obtain and maintain PCI DSS compliance.

Description

A PCI DSS Gap Assessment is an analysis on the differences between  an entity’s present security standards and policies and the twelve requirements of PCI DSS. The variances, or “gaps”, are then determined and can be corrected with PCI Remediation. If you have been asked to comply with the PCI DSS by a card brand, an issuing or acquiring bank, a business partner, or a customer who requires it as part of a due diligence exercise, Cognosec can help you. Cognosec’s PCI Gap Assessment is available for both remote and onsite activities. To create the most accurate assessment possible, it also includes interviewing system architects, systems administrators, testing personnel, and support staff.

Specification

Most companies have established security standards and procedures in place, but as the world is conforming on one standard, a reassessment is necessary. A PCI DSS Gap Assessment is an analysis on the differences between established security standards and those demanded by the PCI SSC. The variances, or “gaps”, are then determined and corrected. Our process includes interviewing system architects, systems administrators, testing personnel, support staff and others to gather the most information possible – aiding the subsequent analysis and generation of the final PCI DSS Gap Analysis report. Many companies already have security standards and procedures in place, but as the world is conforming to one standard, a re-assessment is often necessary. A PCI Gap Assessment is an analysis on the variances between established security standards and those required by the PCI SSC for PCI certification.

Download as PDF