Consulting · Certification & Audit

Compliance Services

Certification programs that finish on time, at cost and survive the audit.

Talk to us about compliance services All consulting

What Compliance Services actually delivers.

Vectra runs full certification and assessment programs across IRAP, PCI DSS QSA, ISO 27001 and Essential Eight. We sit on both sides of the table - practitioners during uplift, assessors at certification - so the controls put in place actually meet the standard the assessor asks about.

We start with a gap assessment against the framework, agree a remediation sequence, then carry the program through control design, evidence collection and the final audit. Findings are tracked in a system both your team and the assessor can see - no surprises in the closing meeting.

What you get

The outcomes this engagement has to produce.

  1. 01

    PCI DSS QSA

    Australia's first PCI DSS QSA company - full QSA delivery from scoping and gap analysis through to ROC and AOC.

  2. 02

    IRAP at PROTECTED

    PROTECTED-certified IRAP assessors with cleared personnel, delivering against the IRAP Policy and ISM.

  3. 03

    ISO 27001 end to end

    Implementation, internal audit and certification support - with the same team across the lifecycle.

  4. 04

    Essential Eight ML2 / ML3

    Maturity uplift to ML2 and ML3 with evidence pipelines that hold up under ASD review.

Services

Related products & services.

How Vectra delivers the work underneath Compliance Services - inside customer environments today.

Advisory

IRAP Assessment

PROTECTED-certified assessors for Australian government and regulated entities.
Advisory

PCI DSS Consulting & Compliance

Australia's first certified QSA Company. Twenty years of PCI DSS assessments, pen tests and v4.0 script monitoring for merchants, service providers and banks.
Advisory

ISO 27001 Compliance & Audits

Implement, certify and maintain the international standard for information security management - end-to-end across the three-year cycle.
Advisory

ASD Essential Eight

Reach Maturity Level 3 across the ACSC's eight prioritised mitigation strategies.
Read next

Other places this turns up on the site.

Previous
Offensive Security

CREST-certified penetration testing and red team operations across network, web, cloud and physical.
Next
Threat Hunting

Time-boxed hunt engagements against your existing telemetry - to confirm there is nothing already inside.

Security, engineered around you.

Talk to an engineer - not a call centre. Most Vectra conversations start with a 30-minute technical briefing and end with a written plan.

+61 8 8208 0800 1800 816 044 info@vectra-corp.com