For this type of engagement, we leverage testing techniques that are designed to help organizations comply with the PCI DSS. During this assessment, our team focuses on gaining access to your cardholder data environment (CDE) and cardholder data (CHD).
One of the largest privately held regional retail corporations in the United States engaged Focal Point as its PCI QSA to perform its annual PCI compliance audits.
The PCI DSS requires all Internet-facing systems that store, process, transmit, or impact the security of CHD be scanned by a certified ASV and identified vulnerabilities be remediated and rescanned on a quarterly basis. Focal Point has been a certified PCI ASV for more than a decade and can help companies execute these tests swiftly and effectively.
Designed to meet the requirements of the current version of the PCI DSS, this assessment tests the effectiveness of segmentation barriers placed between the CDE and other networks through evaluation of connections permitted into the CDE.
Beyond ASV scans and segmentation validation, Focal Point is a certified QSA and offers a full suite of PCI compliance services, ranging from gap analyses to compliance roadmaps to annual audits.