Home | Press | Contact Us | Testimonials | Clients | Sitemap

PCI DSS, ISO or HIPAA

Assessment and Gap Analysis

The Payment Card Industry (PCI) Data Security Standard (DSS) enables merchants and service providers to assess their security status by using a single set of security requirements for all payment organizations. 12 information security requirements have been defined within 6 control objectives. The ISO 27002 Information Standard defines 11 clauses and the HIPAA Security Rule establishes requirements for covered entities. Is your organization impacted by PCI DSS, ISO or HIPAA requirements?

How Prepared is Your Organization for Meeting Compliance Requirements? The ecfirst PCI DSS, ISO and HIPAA Assessment and Gap Analysis Service enables your organization to better understand the current state of compliance and evaluate a roadmap for remediation prior to completing a formal audit. This service does not replace an audit  – it does help identify and address gaps prior to a complete and comprehensive compliance audit.

OUR COMMITMENT TO YOU

  1. Document where all your organization’s credit card data resides.
  2. Analyze security capabilities that currently protect credit card data and other sensitive information wherever it may reside
  3. Review current technology architecture including perimeter defense capabilities
  4. Examine how credit card and other sensitive data flows across the organization

YOUR COMMITMENT TO US

  1. Interviews with key members of IT staff and management.
  2. Copies of your network and security documentation including policies and procedures.

OUR DELIVERABLE TO YOU

A complete report of our findings – in an organized format - outlining the state of PCI DSS, ISO and/or HIPAA compliance.  This document will clearly establish areas that your organization is in compliance, partial compliance or non-compliance with the requirements of regulations that impact your business.

Fixed Fee with No Expenses: Call for details and a customized proposal exclusively for your organization.
 
You may download a copy of the PCI DSS quick reference card at: www.ecfirst.biz.

About ecfirst

ecfirst delivers world-class information security, regulatory compliance solutions and its professional services team enables businesses address IT staffing challenges every day. With over 900+ clients, ecfirst was recognized as an Inc. 500 business – America’s Top 500 Fastest Growing Privately Held Business in 2004 – our first year of eligibility. ecfirst assists organizations with their compliance initiatives for a secure information infrastructure that is compliant with regulations such as PCI DSS, HIPAA, Sarbanes-Oxley, ISO 27002, or federal and state legislations. ecfirst serves a Who's Who client list that includes technology firms, numerous hospitals, state and county governments, and hundreds of businesses across the United States and abroad. A partial list of clients includes EMC, IBM, Principal Financial, U.S. Army, U.S. Dept. of Homeland Security, U.S. Dept. of Veterans Affairs and many others.

Information Security & Compliance
ecfirst delivers deep expertise with its full suite of services that include Single Sign-On (SSO), context management, contingency planning/Business Impact Analysis (BIA), vulnerability assessment, as well as managed compliance, security and IT infrastructure solutions. ecfirst has successfully executed fixed price, fixed deliverable, turnkey projects across the United States.

World-class IT Professional Services
The ecfirst Professional Staffing Practice excels in meeting your short and long term requirements for contract professionals in the areas of Web development, system, database and network administration, application development, system architecture, and project management. This practice is distinguished with credentialed staff (PMP, CBCP, CISSP, CSCS, CHSS or others that may be required) that includes deep industry knowledge in the healthcare, financial, technology and government markets.

Compliance and Training Certification
The Certified HIPAA Administrator (CHATM), Certified HIPAA Professional (CHP) and the Certified HIPAA Security Specialist (CHSSTM) certifications are the gold standards in the Industry. The ecfirst Certified Security Compliance Specialist (CSCS) Program is the first and only information security program that addresses all major compliance regulations from a security perspective.

Talk to ecfirst and you will find an organization that is passionate about the services we deliver and exceptionally devoted to its clients. For more information, please visit http://www.ecfirst.com/.