Auditing Theory and Practice- PDF

Added on 2021-06-18

4 Pages759 Words73 Views

Running head: AUDITING THEORY AND PRACTICE 1Auditing Theory and PracticeName Institution

AUDITING THEORY AND PRACTICE 2A PCI is a Payment Card Industry. A business is required to conduct a PCI audit toensure that their entire customer’s credit card security is taken good care of. Therefore, all thetransactions in the company must be safe and also the data stored by the company must besafeguarded. It thus assesses the business side of the company.A PCI audit involves the following processesAppointing a Qualified Security Assessor (QSA)It is important to find a QSA that has been trained in building a PCI audit. The QSI mustbe approved by the PCI SSC (Payment Card Industry Security Standards Council). Credit carddata is crucial information and thus it is essential to find a person that is trained that can evaluatethis information. Evaluating the information In this step, the QSA will look at the networks and systems for payments and also theprocedures for payment and the policies of the company. The staff of the company is required toalso help in providing information about the company (Sabillon, Serra-Ruiz, Cavaller & Cano,2017).Risk assessmentAfter evaluation, the assessor will provide a PCI risk assessment. This documentbasically is a summary of your company’s data security. It shows the weak and strong areas inyour data security system. This way the company knows which areas to focus on in order toimprove their data security.Act on the risk assessmentHere the problems found in the data security system should be solved by addressing thecrucial areas first. The assessor can give advice on how to improve and conduct the PCI audit.

End of preview

Want to access all the pages? Upload your documents or become a member.

Payment Card Industry Data Security Standard

|987

|13

Payment Card Industry Data Security Standard (PCI DSS)

|328

|32

HEARTLAND PAYMENT SECURITY SYSTEM BREACH Name Instructor

|447

|174

Analysis of Internal Audit Report of Texas Department of Motor Vehicles

|15

|1368

|370

Legal Regulations and Compliance

|1282

|275

P5 - Discuss risk assessment procedures

|46

|15259

|371

Auditing Theory and Practice- PDF

End of preview

Payment Card Industry Data Security Standardlg...

Payment Card Industry Data Security Standard (PCI DSS)lg...

HEARTLAND PAYMENT SECURITY SYSTEM BREACH Name Instructorlg...

Analysis of Internal Audit Report of Texas Department of Motor Vehicleslg...

Legal Regulations and Compliancelg...