Irisk follows the following standardized methodology for PCI-DSS certification.

Scope
GAP analysis
Scans & Penetration tests
Remediation Plan
Remediation support
Off-site Audit
Onsite validation
Draft Report on compliance
Report on Compliance

Description
Irisk will perform a gap analysis and perform the required testing to be able to inform the client of the controls that need remediation to achieve PCI compliance. The assessment will include a review of the cardholder production network (including vulnerability and penetration testing) and supporting technical documentation. The assessment process may include interviews with company personnel to determine what PCI requirements are in place and where remediation is required. Post remediation phase, Control Case, our partner will audit & certify.