|
|
|
|
|
- PCI Workshop & Scope Definition
For merchants and service providers that are new to the PCI DSS, Nettitude recommends
conducting a PCI workshop to identify the scope of how the standard applies to your
business. This can range from being a few hours on site for our smaller clients,
and extends all the way up to offering a series of days of services for our larger
clients. - Gap Analysis
Nettitude provides Gap Analysis to measure your card handling processes and procedures
against the PCI DSS. The gap analysis is usually conducted over a 2-3 day period,
and provides an in-depth assessment of your policies, procedures, working practice
and technology. Nettitude produces comprehensive advice and guidance on areas of
non-compliance, as well as offering pragmatic advice on how the standard can be
de-scoped, and on how the organisation can move forwards to achieving overall compliance.
- Document Creation
At the heart of any successful IT Security infrastructure is a strong IT Security
Policy. In Nettitude's role as a Qualified Security Assessor, we are adept at writing
and developing all of the policies, procedures and controls required to achieve
PCI DSS compliance. This is a tailored service, that is unique to every client we
engage with. Nettitude believes that this is the only way to have strong Information
Security Policy that truly reflects your business process and culture. - Security Services
Through Nettitude's Infrastructure Team, we are able to offer Security solutions
that range from Firewalling through IPS, 2-factor through SIEM, and Tokenization
through to Network Access Control. Nettitude's Infrastructure Team are partitioned
from our QSA and Security Assessment team, however they are fully versed in all
aspects of the PCI DSS. As a consequence of this, we are well equipped in delivering
security technology solutions for all requirements of the security standard.
- Penetration Testing and Scanning Services
Nettitude has been offering Penetration Testing & ASV services since the 1st
release of the Payment Card Data Security Standard. We provide strong security assessment
and systems assurance services and are able to deliver best-of-breed feedback about
your vulnerabilities and exposures. Both ASV and Penetration Testing services are
Consultancy Led. This means that we can eliminate any false positives, and ensure
that any testing engagement is fully structured to your business requirements.
|
|
- Pre-Audit and Audit
Nettitude has a team of Qualified Security Assessors who are involved in all pre-audit
and final-audit engagements. All QSA's hold CISSP qualifications, and have real
life experience of information security technology and practice. The amount of time
required for all pre-audit and final audit exercises will vary from client to client.
However we won't charge you for services that you don't need. All engagements are
quoted against a fixed number of days. If the audit engagement can be completed
more quickly, Nettitude will only charge you for the days used. - A Flexible Approach.
Nettitude is the PCI DSS partner of choice for many organisations, large and small.
We aim to be flexible in all of our engagements, and offer high quality guidance
that is both pragmatic, founded in strong security practice and yet realistic for
your business's size, process and exposure to risk. - Our strong set of testimonials demonstrates our high level of customer satisfaction.
We aim to develop ongoing partnerships with our clients where we become their trusted
advisor and voice in to the PCI Security Council.
|
To find out more about how Nettitude can help you with your PCI Compliance requirements,
please complete our contact form,
and a Consultant will respond to your enquiry.