Our Services
Compliance & Certification
Download a Factsheet with Service Details
ISO27001 Compliance
PCI DSS Compliance
Compliance programmes are becoming ever more stringent as business grows increasingly dependent on electronic communication and trading. There are now a growing number of rigorous industry standards and regulations, such as ISO 27001, PCI DSS, SOX, MiFID and the Data Protection Act, creating a minefield for compliance management.
Security Alliance offers a range of services which help demonstrate that your policies, processes and procedures comply with industry standards. As a result, you can provide strong assurance to your customers, suppliers, partners, auditors and other stakeholders that you are safe to do business with.
Our compliance services include:
ISO 27001: the globally-recognised standard which comprises a structured set of guidelines and specifications to help you develop your own Information Security Management System. We provide a rigorous and entirely product-independent compliance service for this exacting standard prior to formal certification.
ISO 27002 (formerly ISO 17799): this code of practice lays the foundation for ISO27001 and operates as a set of best practice guidelines. We provide a rigorous and product-independent service to help you self-certify against this exacting standard.
PCI DSS: this worldwide standard ensures merchants and service providers protect cardholder data. We provide a rigorous and product-independent audit service which will help you achieve compliance quickly and cost-effectively, and prepare you for a formal certification audit.
The Data Protection Act: the DPA makes it a legal requirement for businesses to collect, hold and process personal data in a secure way. We provide a rigorous and product-independent audit service to ensure you are complying with the Act and to avoid damaging breaches in data security and the significant fines which could result.
