|
Companies that want a
facilitated session for their business units, legal, marketing,
IT and other departments to discuss the most practical
and cost effective approach to achieving PCI DSS compliance. |
|
Companies that want to
expose their senior executives and non-IT executives to
the new PCI DSS standard and what it means for their business. |
|
Companies that want to
gain a better understanding of PCI DSS compliance issues
such as What is the PCI DSS audit?, What are compensating
controls? What happens if our company is non-compliant? |
A PCI DSS Security Workshop is a facilitated
session led by a QSA-certified auditor and one of our Senior
Partners. After an initial overview of the new PCI DSS standard,
we will guide your team in a systematic approach to developing
a strategy for attaining PCI DSS compliance.
The most successful workshops include a
diverse group of company stakeholders to ensure that all the
issues/concerns are addressed.
Workshops cover all 6 control areas of the
new PCI DSS Standard Version 1.1:
|
Build and Maintain a Secure
Network |
|
Protect Cardholder Data |
|
Maintain a Vulnerability
Management Program |
|
Implement Strong Access
Control Measures |
|
Regularly Monitor and
Test Networks |
|
Maintain an Information
Security Policy |
After an initial call, the Arsenal Security
Group Senior Partner will prepare a statement of work within
2 days and we normally can begin an engagement within two
weeks. Prior to the workshop, we will meet with the company
contact to develop the key questions to be covered in the
workshop, identify the participants and establish the baseline
knowledge of the group. One of our Senior Partners will lead
the engagement working with one of our QSA-certified auditors.
We will provide a written executive summary and a detailed
report of the key findings, recommendations and any conclusions
reached. Our engagement is not complete until all of our deliverables
have been reviewed accepted by our client.
About
Arsenal Security Group
Arsenal Security Group is a security
consulting firm that is focused on close client coordination
and collaboration. From the initial meeting through the final
presentation, one of Arsenal Security Group’s Senior
Partners will be the primary contact for all engagement activities.
We proactively conduct weekly calls with our client when engaged
and meet with clients on a quarterly basis to review and understand
their security posture – even when we are not actively
engaged on assignment to ensure they are aware of new security
risks or regulatory changes they may impact their business.
^^ Top |
