!Latest cybersecurity news and updates. Contact us
Cagpemini
Cybersecurity Excellence

PCI DSS Compliance Audit

Complete support for PCI DSS 4.0 compliance - The mandatory standard for payment card data processing

Duration
16 weeks
Level
Advanced
Mode
Blended (in-person + remote)

Our PCI DSS Compliance Audit service supports you in comprehensively assessing your security posture. We operate in 10 major international cities with certified experts.

Key Information

Duration16 weeks
ModeBlended (in-person + remote)
LevelAdvanced
Available Cities13
Choose a City

Available on-site and remotely

10
Cities served
1,200+
Clients trained
4.8/5
Satisfaction rate
12+
Years of experience

Select Your City

Select your city to view local pricing, upcoming sessions, and region-specific information.

Paris
France
Geneva
Switzerland
Montreal
Canada
Austin
United States
Singapore
Singapore
Shanghai
China
Dubai
United Arab Emirates
Casablanca
Morocco
Dakar
Senegal
Riyadh
Saudi Arabia
Johannesburg
South Africa
Lagos
Nigeria
Addis Ababa
Ethiopia

Can't find your city? We also offer remote training sessions.

Template

Download for free

PCI DSS Gap Analysis Template

Identify your PCI DSS 4.0 compliance gaps with this 12 requirements template.

Presentation

Complete support for PCI DSS 4.0 compliance - The mandatory standard for payment card data processing

Objectives

  • Achieve PCI DSS 4.0 compliance with its 12 requirements
  • Reduce fraud and data theft risks
  • Avoid card network penalties (Visa, Mastercard)
  • Obtain Attestation of Compliance (AOC) or ROC report
  • Maintain compliance with continuous monitoring program

Target Audience

  • E-commerce and online merchants
  • Payment service providers (PSP)
  • Fintech and neobanks
  • Hotels, restaurants and retail
  • Any merchant accepting payment cards

Prerequisites

Organization processing payment card data. Established IT infrastructure. Management commitment and dedicated budget. Designated security or IT manager.

Our Methodology

  • Cardholder data flow mapping (CDE)
  • Merchant level identification (1-4)
  • Gap analysis vs 12 PCI DSS 4.0 requirements
  • Remediation roadmap and budget

Frequently Asked Questions

Detailed Curriculum

1

Phase 1: Assessment and Scoping

  • Cardholder data flow mapping (CDE)
  • Merchant level identification (1-4)
  • Gap analysis vs 12 PCI DSS 4.0 requirements
  • Remediation roadmap and budget
2

Phase 2: Network and System Security (Req. 1-6)

  • Req 1-2: Firewalls and secure configurations
  • Req 3-4: Stored and in-transit data protection
  • Req 5-6: Antivirus, patching and secure development
  • Network segmentation and scope reduction
3

Phase 3: Access Control and Monitoring (Req. 7-12)

  • Req 7-8: Access control and strong authentication
  • Req 9: Physical security
  • Req 10-11: Logging, monitoring and security testing
  • Req 12: Security policies and awareness
4

Phase 4: Audit and Certification

  • Self-Assessment Questionnaire (SAQ) or QSA audit
  • Vulnerability tests and ASV scans
  • Findings remediation
  • AOC obtainment and annual maintenance

Questions about the program?

Prerequisites

Organization processing payment card data. Established IT infrastructure. Management commitment and dedicated budget. Designated security or IT manager.

Target Audience

  • E-commerce and online merchants
  • Payment service providers (PSP)
  • Fintech and neobanks
  • Hotels, restaurants and retail
  • Any merchant accepting payment cards

Expected Outcomes

Achieve PCI DSS 4.0 compliance with its 12 requirements

Reduce fraud and data theft risks

Avoid card network penalties (Visa, Mastercard)

Obtain Attestation of Compliance (AOC) or ROC report

Maintain compliance with continuous monitoring program

Why choose our audit?

  • Certified auditors (CISSP, CISA, ISO 27001)
  • Proven methodology compliant with standards
  • Detailed report with prioritized action plan
  • Post-audit support included
  • Expertise in 10 international cities
  • Confidentiality and NDA guaranteed

Availability

Sessions available year-round in our 10 cities. In-person and remote training available. Request the complete schedule for your city.

FAQs

What are the 4 PCI DSS merchant levels?
Level 1: >6M transactions/year (annual QSA audit). Level 2: 1-6M transactions. Level 3: 20K-1M e-commerce transactions. Level 4: <20K e-commerce or <1M other transactions. Levels 2-4 can use SAQ (self-assessment).
What are the new features in PCI DSS 4.0?
PCI DSS 4.0 (mandatory March 2024) introduces: customized approach, enhanced MFA authentication, new e-commerce requirements (scripts, headers), modified payment page detection, and improved key management. 51 new requirements in total.
How much does PCI DSS compliance cost?
Level 4 (SAQ): €5-20K. Level 2-3: €20-50K. Level 1 (QSA): €50-200K+. These costs include consulting, technical tools (ASV scans, WAF, tokenization) and audit. Non-compliance penalties can reach €100K/month.
Is PCI DSS mandatory?
Yes, PCI DSS is contractually mandatory for any organization that stores, processes or transmits card data. It is a requirement of Visa, Mastercard, Amex networks. Non-compliance results in penalties, fines and potentially loss of card acceptance privileges.

Ready to get started?

Select your city to view upcoming sessions and local pricing

Available on-site in 13 cities and via remote training

View Available Cities
PCI DSS 4.0 Audit | Card Data Compliance | 12 Requirements | Cagpemini