Bradford-based ECSC is claiming to be the UK's first PCI DSS Level 1 Service Provider certified to offer a full range of IT security managed services.

ECSC says that the new accreditation adds to the company's existing ISO 27001, ISO 20000 and ISO 9001.

“We are delighted to be able to offer PCI DSS managed services to complement our established services. As Qualified Security Assessors (QSAs), we see people struggle with the technical aspects of the standard, and the more practical experience we can contribute, the easier it is for our clients to achieve compliance,” said lead consultant Graham Boler.

PCI DSS is a set of requirements for enhancing payment account data security. It was developed by the founding payment brands of the PCI Security Standards Council, including American Express, Discover, JCB International, MasterCard and Visa.

Despite stringent penalties for non-compliance, merchants and payment card data holders have struggled to implement the standard.