Optimum Web
Certification Readiness

PCI DSS

Self-assessment support, payment security audit, network segmentation, logging.

4 services · Fixed price · 14-day warranty · Senior engineers only

PCI DSSCR-PCI-01

PCI DSS Self-Assessment Support

PCI DSS v4.0 SAQ completion: determine correct type, walk through all requirements, document controls, produce submission-ready SAQ. $349.

$349 3–5 business days
14-day warranty
PCI DSSCR-PCI-02

Payment Infrastructure Security Audit

PCI DSS technical audit: network, systems, encryption, malware, dev practices. Payment data flow diagram + findings report with remediation. $490.

$490 5–7 business days
14-day warranty
PCI DSSCR-PCI-03

Network Segmentation for Cardholder Data

PCI network segmentation: isolate cardholder data, reduce PCI scope, lower compliance cost. VPC/VLAN, firewall rules, micro-segmentation, bastion host. $390.

$390 3–5 business days
14-day warranty
PCI DSSCR-PCI-04

PCI-Compliant Logging & Monitoring

PCI Req.10 logging: all CDE access logged, tamper-proof, 1-year retention, daily review automation, suspicious activity alerts. Also covers SOC 2 CC7. $299.

$299 3–5 business days
14-day warranty

Compare Services

ServicePrice
PCI DSS
PCI DSS Self-Assessment Support		$349Details →
PCI DSS
Payment Infrastructure Security Audit		$490Details →
PCI DSS
Network Segmentation for Cardholder Data		$390Details →
PCI DSS
PCI-Compliant Logging & Monitoring		$299Details →

Frequently Asked Questions

Which PCI DSS SAQ type do I need?+
SAQ A: fully outsourced payment (Stripe Checkout, PayPal hosted). SAQ A-EP: website redirects but partially touches card data. SAQ D: full card data handling. We determine the correct type based on your payment flow.
Is PCI DSS mandatory for all businesses?+
If you accept, process, store, or transmit credit card data — yes. Even if you use Stripe or PayPal, you need at minimum SAQ A. Your acquiring bank/payment processor enforces compliance.
What changed in PCI DSS v4.0?+
Major changes: custom approach option (prove security intent without specific controls), expanded MFA requirements, authentication enhancements, and new e-commerce/anti-phishing requirements. New requirements phase in by March 2025.
What if we don't pass the self-assessment?+
Common — most companies have gaps on first assessment. We identify gaps, provide remediation guidance, and help implement fixes. Once remediated, we re-complete the SAQ.
Do I also need quarterly vulnerability scans?+
SAQ types A-EP and D require quarterly ASV (Approved Scanning Vendor) scans. SAQ A does not. See CR-NIS2-08 for vulnerability management program setup.

Also in Certification Readiness

ISO 27001

Readiness assessment, ISMS documentation, risk assessment, controls implementation, audit prep, ongoing maintenance.

7 services

SOC 2

Readiness, policies, evidence automation, access reviews, change management, vendor risk.

7 services
$5

Not Sure Where to Start?

Our IT Health Check finds every compliance gap in your infrastructure. 1 business day. You get a prioritized list of what to fix.

IT Health Check — $5

Not sure which service you need?

Free Consultation ← Back to Certification Readiness