Methodology

All International Standards maintain something in common: they focus on a specific and clear base methodology and framework. Our company specializes in collaborating with commercial companies and service providers from various industries that have to comply with International Standards requirements. For such purposes, our professionals have been certified and reached the highest level of experience in each of the Standards in which we can collaborate.

Our Methodology is similar we offer:

Consulting (Gap Analysis)

  • Define the scope of work according to the processes or services that your company wishes to certify

  • Review standard configurations in security and network equipment

  • Discover correct data flows to understand good privacy and confidentiality practice

  • Validate good segmentation and technology solutions that your organization maintains and, last but not least;

  • Review compliance policies, processes, and procedures

Certification Audits

The Payment Card Industry and the Data Security Standard, PCI DSS is a very objective framework mandatory for all merchants or service providers that process, store, or transmit card information. FVC Consulting and Dara Security, thanks to our affiliation and exclusive representation for the Latin American market, can collaborate in performing a validation audit and issue compliance certification with PCI DSS, PA DSS, PTS PCI, PCI PIN validating your processes, services, and payment applications step by step

  • Specific Advisory or Support Services

  • Penetration Testing (Internal, External, Software)

  • Training | Documentation Support and Policy Creation

PCI DSS Audits

Training on PCI DSS Compliance It is very important that all our clients are aware of general security aspects. For such purposes, we have developed various workshops and educational programs to ensure a good cultural change, a better secure operations policy, and tools to mitigate risk. Our PCI DSS workshops are focused on helping our clients with the creation of policies, processes, and procedures so that our clients can generate the necessary compliance evidence to deliver to auditors on the day of validation of compliance with PCI.

We can collaborate in creating compliance documents oriented to:

  • State Data Protection and Privacy Acts

  • The Health Care Industry (HIPAA)

  • Financial Institutions (GLBA and SOX)

  • Retails for Consumer Data (PCI DSS)