This website uses cookies. View our cookie policy

Our PCI services and solutions

T Governance is uniquely qualified to provide PCI (Payment Card Industry) services. Our range of consultancy, technical security, software and training services can help your organisation implement suitable solutions that ensure its continued compliance with the PCI DSS (Payment Card Industry Data Security Standard).

Our PCI DSS services include:

Support contract

PCI Compliance and Support Contract for the Smaller Business

Our PCI DSS support contract for SMEs combines policies and procedures, quarterly scans and staff training resources with our expert online consultancy support and advice as part of an all-inclusive PCI DSS assistance programme, at a price that you can afford.


Live Online Consultancy

Our Live Online Consultancy support service can be purchased by the hour, enabling you to receive the expert PCI support you require quickly and cost-effectively.

PCI SAQ validation

Our PCI DSS SAQ validation and support service helps you identify the appropriate SAQ (self-assessment questionnaire) to complete and provides the necessary advice and assistance to achieve full PCI DSS compliance. 

PCI gap analysis

A PCI gap analysis conducted by an IT Governance QSA (Qualified Security Assessor) maps critical information processes and technical infrastructure.

By assessing your current state of compliance, we can determine the most cost-effective approach to conforming with the PCI DSS requirements

Technical security

PCI penetration testing

Requirement 11 of the PCI DSS mandates regular security testing.

Our PCI compliance penetration tests assess your security systems, public-facing devices and systems, databases and any other systems that store, process or transmit cardholder data, to discover your vulnerabilities before cyber criminals do.

PCI ASV scanning

Our HackerGuardian scanning service performs highly accurate scanning of your externally facing systems as required by the PCI DSS.

It runs more than 60,000 tests on your organisation’s servers and network and provides clear advice on how to mitigate any security vulnerabilities.

Training and staff awareness

Staff awareness

PCI DSS Online Course, Staff Awareness Edition:

PCI DSS rule 12.6 states you must: Implement a formal security awareness program to make all employees aware of the importance of cardholder data security.

This interactive e-learning course aims to increase employees’ awareness of the PCI DSS requirements, and ensure they are taking the correct steps to protect themselves, their company and their customers.


PCI DSS Documentation Toolkit

Use our PCI DSS Documentation Toolkit to assist with the administrative aspect of complying with the Standard.

The toolkit includes an extensive list of policies and forms, a set of project management tools, such as a document checker, a gap analysis tool and several other resources to help with the implementation of your PCI project.

Why choose IT Governance for PCI consultancy?

Our services provide a tailored route to PCI compliance, scalable to your budget and needs.

We go further than a simple ‘yes/ no’ approach to understand better how security measures work.

We work in partnership to help you understand what is required and why giving you control.

We can offer expertise to vet compensating controls and determine whether they are acceptable.

Companies using our PCI DSS products and services:


"IT Governance were very professional and pragmatic in their approach, and displayed a level of understanding of our business that we found unique and refreshing.” 

Damien Everard, COO of Appletree.

Speak to an expert

We have a team of account managers and security consultants to discuss your PCI DSS challenges. Get in touch with one of our specialists today for further information, or to get a tailored quote for your organisation.