Description

Service

Does your company need help to assess readiness for version 4 of the PCI DSS?  Completing this assessment by Servadus helps organizations determine gaps in compliance from the previous standard to the current one.  An external gap assessment is ideal for companies without the resources or technical knowledge to assess themselves.  With Servadus’ top-quality assessment services, the assessment includes online project tracking and an online tool for artifacts and evidence.  Our Profession Service team coordinates the evidence collection and conducts needed interviews.

What to Expect

The assessment includes all the questions and tests for each sub-control of new changes made since the previous standard of the PCI DSS.   There are five primary responsibilities during the assessment.  The assessor determines if the controls are “In Place” and enters a “Not Applicable” determination if needed, and observations are made during the evaluation.  There is a joint effort to upload evidence to the online assessment tool.

In General, the Servadus assessor will upload interview documents while the entity under assessment will collect and upload all other artifacts.  This assessment supports all merchant levels, service providers, and DESV organizations.  Upon completion of the assessment, the Servadus team will review the evidence and determine compliance before preparing a report on the gaps in readiness for the PCI DSS v4.0 changes and arranging a time to present the findings and comments.

Once the order is complete, our team will reach out within two business days to schedule a kickoff meeting.  Once the assessment is complete, the professionals at Servadus with reach out in two business days to schedule a time to present the outcome.

Background on PCI

In 2022 the PCI Security Standard Council (SSC) released version 4 of the PCI DSS. This standard applies to all organizations that process, transmit, or store credit card data.  It also applies to companies that affect the security of cardholder data.  The new standard continues with six goals and twelve major requirements.  The PCI SSC provides more details in their “At a Glance: PCI DSS v4.0” blog.

Extra help

We offer services to support remediation project planning and compliance management. Vulnerability Management, Penetration Testing, and advisory support are a few of our other offerings. You can visit our PCI Ecosystem page to view other services and contact our sales team to discuss your needs.

Order today and start in as little as two business days.