The Department of Transport and Major Infrastructure requires a Consultant to perform a comprehensive gap analysis and develop a detailed remediation roadmap to ensure it meets the Department's requirements for protecting cardholder data.

Scope:

A Consultant is required to perform a comprehensive gap analysis and develop a detailed remediation roadmap to ensure DTMI meets the requirements for protecting cardholder data.

The Consultant is to conduct the Annual Self-Assessment Questionnaire (SAQ) to validate DTMI compliance with Payment Card Industry Data Security Standard (PCI DSS) and is to conduct the Prioritised Approach Form (PAF) to prioritize remediation efforts based on the findings of the SAQ annually throughout the Contract term. Furthermore, the Consultant is to conduct an audit of the 12 PCI DSS requirements to ensure full compliance, identify potential deficiencies, and recommend corrective actions.

Additionally, the Consultant is to deliver face-to-face training sessions tailored to the leadership and project. These sessions will focus on increasing their understanding of the PCI DSS framework, its 12 core requirements, and practical implementation strategies.

Operational Requirements

The Consultant is to be onsite at 2 Tassels Place Innaloo WA 6018 and other Departmental locations for some tasks. For subsequent tasks, the analysis work can mostly be performed remotely.