Nettitude Limited

PCI-DSS Services

Nettitude are one of a handful of organisations to be recognised as a PCI QSA, PCI ASV and PCI PA QSA company. Combining this with our award winning Penetration Testing practice, Security Operations Centre (SOC), Malware Analysis and Incident Response teams, makes us highly unique in this space.


  • PCI DSS Compliance Journey – Assess, Remediate and Report
  • Analysis, with scope identification and analysis against v3.2.1 standard
  • Reduction of Risk and de-scoping of a PCI environment
  • Pragmatic options for identified gaps and compliance roadmap
  • Guidance for designing, developing and operating a PCI compliant infrastructure
  • Full Audit/Certification or self-assessment support as required
  • The creation of ROC, ROV and Attestation of Compliance Reports
  • ASV scans and Penetration testing by industry certified security testers
  • Assessment of Payment Applications
  • Unique innovative approach to PCI certification and management


  • Carried out by highly experienced qualified PCI security consultants
  • Flexible approach to engagements with pragmatic expert guidance
  • Tailored PCI services to achieve/maintain compliance
  • Security testing and assurance teams with a wide, varied experience
  • Protection against costly fines/sanctions
  • Rigorous quality practices adopted and followed
  • Vendor agnostic advice and guidance provided
  • Working relationships with Acquirers and Card Brands
  • Trusted security and technology advisor to achieve compliance
  • PCI-QSA, ASV and PA-QSA certified company


£1000.00 to £1300.00 per person per day

Service documents

G-Cloud 11


Nettitude Limited

Jazz Bhambra

0345 5200085


Planning service Yes
How the planning service works Nettitude provides a forward facing roadmap on how PCI DSS gaps can be bridged. This document provides strategic guidance on how to reduce risk, leverage existing technologies and enhance the environment in line with PCI DSS requirements. At the same time, Nettitude will produce a defined project-plan with key milestones that can be realistically achieved. For organisations that require additional guidance, Nettitude can provide unbiased remediation and solutions advice that leverage existing technology investment, so as to aid in the compliance journey.
Planning service works with specific services Yes
Hosting or software services the planning service works with
  • PCI DSS Card Holder Data Environments (CDE) design
  • Hosted architecture scope and de-scoping options
  • Secure card data storage options
  • Process segmentation
  • Role based access controls encryption
  • Tokenisation solutions
  • Key management options
  • Application design
  • Patch management
  • Change control and network segmentation


Training service provided No

Setup and migration

Setup and migration
Setup or migration service available No

Quality assurance and performance testing

Quality assurance and performance testing
Quality assurance and performance testing service No

Security testing

Security testing
Security services Yes
Security services type
  • Security strategy
  • Security risk management
  • Security design
  • Cyber security consultancy
  • Security testing
  • Security incident management
  • Security audit services
Certified security testers Yes
Security testing certifications
  • Tigerscheme
  • Other
Other security testing certifications
  • OSCP
  • CTIM
  • CPIA
  • CRIA
  • CCIM

Ongoing support

Ongoing support
Ongoing support service No

Service scope

Service scope
Service constraints Continual support throughout the PCI DSS engagement.

User support

User support
Email or online ticketing support No
Phone support Yes
Phone support availability 9 to 5 (UK time), Monday to Friday
Web chat support No
Support levels Continual support throughout the PCI DSS engagement.


Supplier type Not a reseller

Staff security

Staff security
Staff security clearance Conforms to BS7858:2012
Government security clearance Up to Security Clearance (SC)


Price £1000.00 to £1300.00 per person per day
Discount for educational organisations No

Service documents

pdf document: Pricing document pdf document: Skills Framework for the Information Age rate card pdf document: Service definition document pdf document: Terms and conditions
Service documents
Return to top ↑