Business & Technology Risk Partners - PCI DSS
Expert advice and support on PCI DSS.

PCI DSS review and implementation

We can work with you to design and implement PCI DSS in your organisation. We focus on descoping as much as possible to make it as simple as possible to achieve compliance with PCI DSS.

We offer a number of options for how to assist you, including:

• We can perform a gap analysis assessment against the standard to identify the areas that require attention prior to or during the full implementation of PCI DSS
• Assistance in responding to queries from your customers and your Acquirer(s).
• Design and implementation of the necessary PCI DSS controls. We take a pragmatic approach to what is required to both manage the risk and achieve compliance with the requirements of the standard.
• Assistance in completing your Self Assessment Questionnaire and Attestation of Compliance.
• Assistance in dealing with your QSA if you are subject to the formal requirement to create a ROC. This can include challenge to the QSA on their findings.
• We also offer half day and one day overview courses and tailored courses of varying lengths to meet your requirements.

We have a range of consultancy support approaches ranging from full time support for a fixed period through to ad hoc day support over a longer period.

- Why BTRP?

• We have a proven track record in helping organisations implement and meet the requirements of PCI DSS.
• Our basic and very successful approach is to descope as much as possible and simplify what is needed to meet the requirements of the standard.
• We are independent of any QSA company and can therefore offer full impartial advice.
• We have consultants specialising in PCI DSS who have either been QSAs working for a QSA company and/or are ISAs – the equivalent of a QSA from an internal perspective.