PCI DSS Audit

Your respon­si­bility for data protection

As a company that processes card data of inter­na­tional payment systems (e.g. credit card data), you are jointly respon­sible for data protection. As soon as you are respon­sible for large amounts of such payment card data, the payment systems require an annual PCI DSS audit by an accredited Qualified Security Assessor (QSA).

Analysis, documen­tation and recommendation

SRC’s QSAs perform this PCI DSS audit for you. In the PCI DSS audit, the QSA examines whether the require­ments of the PCI DSS for card data security are being met. To this end, the QSA checks guide­lines and proce­dures, can show processes and evidence, takes insight into system and network settings, and conducts inter­views with respon­sible personnel.

Individual, customer-oriented approach

The experts at SRC are not concerned with the mere execution of a checklist, but with pursuing a customer-oriented approach. Our goal is to under­stand your business model and its environment and then, based on our extensive experience, contribute ideas on how processes or technical environ­ments can be redesigned to facil­itate compliance. We accompany you through the difficult task of mastering the constantly expanded require­ments of PCI DSS.

Manifold regulated environ­ments require manifold tests

Often an environment does not only consist of a subject to be examined. In such diversely regulated environ­ments we use, if desired, the expenses arising for the PCI DSS audit and examine other topics, like PCI Card Production (PCI CP), ISO/IEC 27001 or data security.