Search

PCI DSS (Payment Card Industry Data Security Standard)


PCI DSS (Payment Card Industry Data Security Standard) is designed to ensure that the payment card ecosystem built from people, processes and technologies, will protect and secure payments worldwide. A global standard that provides a baseline security control framework, designated to protect payment data and the card-processing ecosystem. If you handle any kind of credit card data, it’s vital you understand how this standard impacts your business.

Orange Cyberdefense can help.  No matter where you are on the PCI DSS journey, we have the skills and service to help support you.
 

PCI DSS Advisory


Whether you are starting out on your journey towards PCI compliance or currently certified and looking to see how the changes in the standard will impact you, we can help with

  • PCI DSS Strategy

  • Best Practices for Implementing PCI DSS into BAU

  • PCI DSS gap analysis – assess current state and define a prioritised approach to achieve compliance

  • Understanding the impacts of the upcoming and phased changes moving from PCI-DSS v3.2.1 to v4.0

  • Remediation support

PCI Approved Scanning Service

Orange Cyberdefense is a PCI Security Standards Council Approved Scanning Vendor (ASV) and can provide external vulnerability scanning services to ensure compliance with PCI DSS requirement 11.3.2

Orange Cyberdefense additionally offers extensive options for all PCI vulnerability scanning requirements, including:

  • Web applications - requirement 6.4.1

  • Internal vulnerability - requirement 11.3.1

  • Penetration testing - requirement 11.4.2

PCI DSS Certification & Attestation

As a PCI QSA company, our specialist Qualified Security Assessors (QSA) are certified by the PCI Security Standards Council to audit merchants for compliance with the Data Security Standard compliance.  We offer support with the following:

  • SAQ – Self Assessment Questionnaire

  • QSA Assessment delivered through the Report On Compliance (ROC)

  • QSA validated Attestation of Compliance (AOC) [for either SAQ or ROC]

Contact us for more information

Incident Response Hotline

Facing cyber incidents right now?

Contact our 24/7/365 world wide service incident response hotline!