Level 1 (and 2) Merchants as well as service providers and acquirers are required to complete an annual Report on Compliance (ROC) to validate their PCI compliance. As a Qualified Security Assessor, Anitian can complete a formal PCI Assessment as well as an ROC and Attestation of Compliance (AOC) in conjunction with a PCI Compliance Assessment.

A typical PCI Compliance Assessment includes:

• Establish scope of payment card environment.
• Review data flow and network diagrams.
• Analysis of applications and databases for payment card information.
• Review of policies and procedures for compliance with PCI DSS standards.
• Analyze storage and transmission of payment card data.
• Determine effectiveness of required controls (IDS, firewall, etc.)
• Compare organizational practices to PCI DSS and determine gaps.

For more information, please call 888.ANITIAN, or email Anitian Enterprise Security.