We are looking for an IT auditor who can value the safety of our infrastructure. Spot all the vulnerabilities, help them fix them and become PCI complaint.
We need a report of such audit, and we will need to perform an audit once per year.
Hourly - Est. Time: Less than 1 month, Less than 10 hrs/week -
We run a SaaS website - and do not store cardholder details. We do however receive them on our servers and transmit them to a payment gateway.
We have now received an email from the bank saying we need to be PCI compliant - which we did not think was a requirement because we do not STORE the card information, but now it seems because we TRANSMIT them - we have 300 questions to answer.
We are looking for someone to guide us through this process.. someone who understnads the questions being asekd and will be able to answer them after reviewing our set up (its a simple setup)