Contact Global Locations
Scoping & Documentation ASV Scanning Contract & Liability Review PCI DSS Gap Analysis Risk Assessment Security Testing Compensating Controls Blackfoot Prioritized Approach Annual Data Security Assessment Payment Processing & Outsourcing
Virtual Security Officer (VSO) Incident Response ISO 27001 Document & Policy Creation Security Awareness Risk Assessment
Infrastructure Security Assessment Web Application Assessment Physical Security Assessment Secure Code Review Data Discovery Wireless Security Assessment Vulnerability Management
Blackfoot Blackbox SME Virtual Security Officer (VSO) Firewall Management Audit Log Management Intrusion Prevention/Detection
PCI DSS Training PA DSS Training Secure Software Development Security Awareness

Risk Assessment



A regular Risk Assessment process is crucial to ensure your business is aware of the risks of handling sensitive data, for example Cardholder Data, Passport Numbers, Financial Data, Payroll and Names and Addresses. Blackfoot initiate the Risk Assessment process by co-ordinating a workshop to identify Risks to make sure a measured approach is taken to implementing controls.

There are a number of information security and risk assessment standards that complement PCI DSS, , including:
  • ISO 27001
  • BS 7799
  • ISO TR 13335-3
  • NIST SP 800-26/30
  • The UK Risk Assessment Standard
ISO 27001 is often seen as offering a practical solution to meet requirements of data protection, but more importantly to do this cost effectively. There is little point spending millions on a security control deployment if a measured approach to risk is not taken.