The Payment Card Industry (PCI) Data Security Standard (DSS) requires an annual onsite audit for Level 1 merchants or service providers.

The PCI onsite audit consists of a well-defined standard. This is unique in the security industry as many audits such as HIPAA and others are not well defined.

When you engage SecurityMetrics to help you become PCI compliant our main objective is to make the onsite PCI audit as streamlined as possible.

SecurityMetrics simplifies PCI onsite audits by breaking the project into 3 manageable steps:

1. Gap analysis
   A list of 24 most common PCI compliance problems for onsite audits is discussed. This allows your team to focus on specific issues before the auditor arrives helping to ensure there are no surprises.
   
2. Requirements consulting
   After the gap analysis is complete then you may have questions on the most efficient and cost effective ways to meet the PCI requirements. Your SecurityMetrics auditor can consult with you to ensure your compliance process is efficient.
   
3. Onsite audit visit
   Once you have completed all PCI requirements your auditor will visit your site(s) to validate your compliance. After the onsite visit your auditor will generate your PCI compliance onsite audit report and submit it to you. You will have an opportunity to review it and discuss it with your auditor before the report is finalized and submitted.
   

If you wish to obtain a price quote for a PCI onsite audit please contact a SecurityMetrics Strategic Accounts representative at (801) 705-5656. They will send you a short questionnaire to ensure they provide a custom price quote that will meet your needs and budget.