PCI DSS

Payment Card Industry Data Security Standard (PCI DSS) is a set of logical, physical and procedural security requirements for organizations processing credit and debit card transactions.

As a leading PCI DSS compliance service provider, EIC is ideally placed to help you become compliant and stay compliant with this standard.

All organizations that store, transmit or process cardholder information need to comply with the standard.

We provide PCI DSS compliance assessment service. Depending on the specific client requirements this can include:

  • Introductory awareness sessions
  • Gap Analysis
  • Remediation assistance at the mitigation stages
  • Mapping processes to PCI DSS requirements
  • Training, policy & strategy development/ definition
Scoping Study

Getting the scope of your payment system audit project right is key to ensuring that you achieve compliance in an efficient and cost effective manner. EIC is ideally placed to carry out scoping activities either in the initial stages of a PCI DSS audit project or as the project progresses.

Blueprint/Gap Analysis

Providing a blueprint is seen by many as one of the first steps along the way to PCI DSS compliance. Our team help you to plan how to achieve compliance, looking at all the options available to you. A gap analysis provides a more detailed and itemised report showing how you are currently managing each control area against the standard requirements.

Remediation

We can act as Trusted Advisors to provide ongoing support and guidance through the remediation phases of a PCI DSS compliance project.

VA & PT

Our penetration testing and scanning team can deliver an annual programme of penetration testing and vulnerability assessment to help you meet PCI DSS requirements and assess the security of your applications and networks.