PCI DSS (Payment Card Industry Data Security Standard) is designed to ensure that the payment card ecosystem built from people, processes and technologies, will protect and secure payments worldwide. A global standard that provides a baseline security control framework, designated to protect payment data and the card-processing ecosystem. If you handle any kind of credit card data, it’s vital you understand how this standard impacts your business.
Orange Cyberdefense can help. No matter where you are on the PCI DSS journey, we have the skills and service to help support you.
Whether you are starting out on your journey towards PCI compliance or currently certified and looking to see how the changes in the standard will impact you, we can help with
PCI DSS Strategy
Best Practices for Implementing PCI DSS into BAU
PCI DSS gap analysis – assess current state and define a prioritised approach to achieve compliance
Understanding the impacts of the upcoming and phased changes moving from PCI-DSS v3.2.1 to v4.0
Orange Cyberdefense is a PCI Security Standards Council Approved Scanning Vendor (ASV) and can provide external vulnerability scanning services to ensure compliance with PCI DSS requirement 11.3.2
Orange Cyberdefense additionally offers extensive options for all PCI vulnerability scanning requirements, including:
Web applications - requirement 6.4.1
Internal vulnerability - requirement 11.3.1
Penetration testing - requirement 11.4.2
As a PCI QSA company, our specialist Qualified Security Assessors (QSA) are certified by the PCI Security Standards Council to audit merchants for compliance with the Data Security Standard compliance. We offer support with the following:
SAQ – Self Assessment Questionnaire
QSA Assessment delivered through the Report On Compliance (ROC)
QSA validated Attestation of Compliance (AOC) [for either SAQ or ROC]