Compliance, Audit and Certification (ISO27001, PCI-DSS...)

We'll work with your team to assess your compliance, establish a baseline against the required standard and work towards accreditation where required.

General Controls Audit

Tesserent partners with our clients to regularly audit Information Technology environments and operations. Our experienced IT auditors can be placed into an organisation to conduct IT General Controls and other internal audit-readiness services to assist clients to identify, document and mitigate risks associated with the function of being audited. These services can be totally outsourced to Tesserent, or completed as part of a shared arrangement with your own audit team. We’ll work with you based on what you need!

The scope can be tailored to your needs and can include audits of:

  • IT General Controls & Security
  • Critical Infrastructure Controls
  • Business Continuity Management
  • Project Management
  • Consumer Data Rights
  • Privacy Impact Assessments
  • GDPR
  • Specific Security Audits (Discussion with Tesserent required).

ISO27001 – ISMS Services

ISO 27001:2013 is a globally recognised industry standard for the implementation and management of Information Security Management Systems. It includes both management and technical related controls requirements. ISO27001 is used to focus your organisation’s resources on the management of information and information technology security risks based on the risk profile of your organisation.

Tesserent has delivered ISO27001 ISMS Audit and related services over many years, across a diverse range of clients. We have ISO27001 Lead Auditors on staff to assist you in your development, design, assessment and certification requirements. Our ISO27001 ISMS services are tailored to your requirements and may include:

  • ISO27001 Gap Analysis
  • ISO27001 Certification Audits (Stage 1 & Stage 2)
  • ISO27001 Remediation Services
  • ISO27001 Surveillance Audit

PCI DSS Compliance, Assessments, and Services

Tesserent has significant experience in the assessment, review and implementation of the PCI Data Security Standard based on years of experience in the professional services, banking, insurance and telecommunications sectors. This assessment is vital for any organisation holding credit card and card holder information or data. During any assessment we conduct necessary artefact reviews, interviews with stakeholders, and on-site inspections.

Tesserent can partner with you on a range of PCI DSS related services including:

  • Assessment of the PCIDSS compliant controls and practices
  • PCI DSS Advisory Services (QSA)
  • PCI DSS Compliance Assessments (Report on Controls)
  • Validation of Self-Assessment Questionnaires (SAQ-X)
Contact us

Speak with a Tesserent
Security Specialist

Tesserent is a full-service cybersecurity and secure cloud services provider, partnering with clients from all industries and all levels of government. Let’s talk.

Let's Talk
Tess head 10 min