Organizations accepting credit cards must comply with PCI standards. Often these organizations may be under the false impression that PCI compliance is not pertinent since the credit card numbers and personally protected information is stored at a third-party provider’s location. However, access could be gained through their unprotected local networks and systems used to access the third-party held data.
The PCI assessment includes worksheets, review of the Cardholder Data Environment (CDE), pre-audits, documentation and listing of priorities for PCI-related security vulnerabilities, sample PCI policies and procedures, risk analysis, management plan, evidence of compliance, and more. For an additional charge, ASV certified scans can be ordered.
Note: Current pricing is for companies under 200 employees.