Assessment Remediation

PCI/DSS

Data Security Standard is a compliance framework for the Payment Card Industry and is mandated by the Payment Card Brands that organisations, Merchants,  taking payments via credit or debit card must comply with.

 

 

Rivington will provide a qualified and experienced QSA who will work with the merchant to:

 

•Provide advice and guidance on how the merchant can satisfy the requirements of the standard


•Assess the Card Holder Environment against the PCI DSS Standard


•Provide feedback to the Acquirer against the Prioritised Approach


•Complete the appropriate Self Assessment Questionnaire


•Perform the annual audit against the standard and provide a Report on Compliance for submission to the Acquirer


•Work with the Merchant through the year to assist in maintaining compliance to the standard

 

 

ISO 27001

ISO27001 is the recognised standard for Information Security and should be the basis of any organisations approach to security, its information systems and data assets.

 

Rivington will provide a qualified and experienced consultant who will work with the organisation to:

 

•Develop an Information Security Management System (ISMS)


•Develop appropriate security standards and policies including a framework for the adoption, update and retirement of policies


•Develop appropriate controls and metrics to assess the organisation’s compliance with the approved ISMS and Policies


•Work with the organisation to ensure appropriate evidence is available to demonstrate compliance to the standard via an internal audit schedule

 

 

Security Maturity

A Maturity Assessment provides management with a simple, business focused understanding of how its own policies and procedures are embedded within the DNA of the organisation.

 

•Usually focused on Security Policy, Processes or Procedures or a combination of


•Uses a defined, repeatable processes to allow comparison against previous or future assessments


•Helps to understand where budgets can be focused to provide increased ROI and appropriate protection


•Can provide a multi-year roadmap to further improve maturity


•Can include comparisons against peers or other industry sectors

 

 

Additionally a Maturity Assessment provides management with a simple, business focused, understanding of how its own policies and procedures are embedded within the DNA of the organisation.

 

·   Usually focused on Security Policy, Processes or Procedures or a combination of

 

·   Uses a defined, repeatable processes to allow comparison against previous or future assessments

 

·   Helps to understand where budgets can be focused to provide increased ROI and appropriate protection

 

·   Can provide a multi-year roadmap to further improve maturity

 

·   Can include comparisons against peers or other industry sectors

Print Print | Sitemap
© Rivington Information Security 2016