Whether you need SAQ completion, gap remediation, or full ROC preparation — our PCI QSA-qualified team ensures your cardholder data environment meets every requirement of PCI DSS version 4.0.
PCI DSS 4.0 introduced the customised approach (allowing organisations to meet security objectives through alternative controls), expanded multi-factor authentication requirements, strengthened e-commerce and anti-phishing requirements, and added targeted risk analysis as a new compliance validation method. All organisations must be fully compliant with v4.0 requirements, including the future-dated requirements that took effect in March 2025.
We identify where cardholder data lives, how it flows, and define the boundaries of your cardholder data environment to ensure accurate scoping.
Detailed assessment against all PCI DSS 4.0 requirements. Gap register with remediation roadmap, effort estimates, and priority ranking.
Hands-on technical and process remediation. Network segmentation, encryption, access controls, logging, and policy development.
We prepare all evidence, complete your Self-Assessment Questionnaire, or prepare you for a Report on Compliance assessment by a QSA.