Audit services you can rely on

We constantly assess the delivery and quality of our audit services. This ensures that we are delivering the best advice on securing networks or achieving and maintaining compliance.

Our audit services split into two disciplines....

PCI AUDIT SERVICES. We are an experienced Qualified Security Assessor (QSA) and Approved Scanning Vendor (ASV). Operating in many parts of the world we work with banks, retailers, software vendors, manufacturers and government bodies. Our long standing relationships are based on our ability to deliver comprehensive audits and accurate advice. Our PCI services are extensive and include:

PCI DSS Gap & Final Audits
PA DSS Gap & Final Audits
ASV Scanning
PCI Remediation consultancy
SAQ Walkthroughs
PCI 1-day awareness sessions
PCI Policy Pack

IT SECURITY AUDITS. Our penetration testing and audit service includes reviewing network and web applications, wireless networks, physical security and social engineering. It is a comprehensive set of procedures and techniques that utilises testing tools, analyses results and applies crafted, manual tests to fully review your target environment.

Vulnerability Assessments
Application Penetration Test
Network Penetration Test
Wireless Penetration Test
Physical Security Reviews
Social Engineering
BS27001 Strategy Reviews

 

Our Audit Team. We work incredibly closely as a team. At all stages of the audit process, progress is peer reviewed and results discussed amongst members of our test group. As we place so much importance on communication, we take a great deal of time and effort to find the right people to join our team of auditors. Apart from having an IT security background, they must have a desire to work with technology and possess an open and inquisitive mind.

A Flexible Approach. Particular test requirements can normally be accommodated. This can include out of hours working or staging the audit process to test prioritised components.

Confidentiality. During our audit exercises, we are privy to confidential information. We have a blanket rule for confidentiality – no information is discussed with anyone outside of the direct customer relationship. This includes any third parties, subsidiaries or regulators. This practice is normally supported by signing confidentiality agreements. However, even without these documents, you can be assured that no details of our relationship are discussed with any other person or organisation.

Featured Service...

Featured Client

Many organisations spend time developing policy materials that often do not meet the demanding requirements of the PCI DSS.

Ambersail's policy pack is a detailed, comprehensive suite of documents that has been developed by our experienced QSA team.

Additional Information

  • Service delivery constantly monitored and re-assessed for accuracy, coverage and applicability.
  • Delivered by a team of experienced, qualified engineers and consultants.
  • Two core disciplines that include PCI auditing and technical vulnerability assessment.
  • All client relationships are completely confidential. All audit information is held securely and held obnly for as long as needed.

Feel free to contact us to discuss any aspect of your security or compliance programme.


© 2010 Ambersail Ltd