Link to home
Start Free TrialLog in
Avatar of amigan_99
amigan_99Flag for United States of America

asked on

PCI Compliance and other - job question!

A small but growing company has a software as a service housed at a data center.  They liked my network design and implementation work in the past and would like me to shepherd the process to get their customer facing operation PCI compliant and perhaps some other certifications as well.  I have participated in the process - being a network, systems and process gopher for the big eight auditors who came to a previous company.  But I've never led the charge end to end.  

I see some online services (e.g. http://www.trust-guard.com/pci-questions.htm) that promise to simplify the process providing the scans and a self assessment wizard for a fee.  
Is this kind of service actually helpful?  Are there other services that I should consider to help me wade through the assessment details?  Am I crazy to take this on without having been co-pilot on other certifications projects??
SOLUTION
Avatar of btan
btan

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
ASKER CERTIFIED SOLUTION
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of amigan_99

ASKER

Thank you much Breadtan.  This helps me define the resources I would need to be successful.  I want to be fully upfront for their sake and my sanity.