PCI Gap Analysis

Gap analysis sessions are scheduled to identify system components that process, transmit, or store cardholder data and collect the configuration information necessary to provide a detailed assessment of the current information technology security processes.

It also analyses the existing control and process gaps associated with 9 of the 12 requirements that form the PCI Data Security Standard. The analysis establishes a clear understanding of what gaps may currently exist so merchants and service providers can determine appropriate actions to correct any deficiencies to ensure the organization is prepared for an onsite audit by a PCI assessor.

PCI Gap Analysis will:

• Assess the vulnerabilities and risks in your current IT operation
• Provide a gap analysis report that can be used to correct identified vulnerabilities
• Identify an automated process for reporting on PCI DSS audit requirements

This will not only help lower the overall cost of maintaining and validating compliance, but will reduce the cost of the audit process itself.

Our Approach

PCI DSS 1.2 Gap analysis will be performed for your IT infrastructure by analysing current data protection efforts against the PCI DSS standard, version 1.2.

Our consultants will deliver a report on PCI DSS 1.2 compliance gaps, along with a high-level remediation roadmap. Recommending a structured framework that will guide your organisation through the process of understanding what they need to do to become compliant with the PCI DSS, understand the areas of their systems that are not compliant, define and implement an effective, achievable, and sustainable PCI DSS compliance program.