Consulting Services

 

PCI Remediation and Audits


As a Qualified Security Assessor since 2005, Mr. Woda understands the need to balance the factors of security, compliance and operating a business.   He uses a risk based approach to prioritize remediation plans and creates unique ways to not only meet compliance but also to secure and enable business processes.


PCI PIN Security


VISA has announced a new PCI PIN Security program in 2014.  AWODA is a an approved Visa Security Assessor and conducts audits of payment processors and encrypting service organizations.


Interac and LINK Certifications and Audits


Mr. Woda has been an Interac Auditor since 1997.   He is also a LINK Auditor (UK ATM Scheme) and has done audits for the Australian ATM Network.  Mr. Woda is frequently consulted on FLASH technology (NFC Payments), Mobile Payment systems and cryptographic service management.


Pre-Paid Card Payment Systems


Mr. Woda is also a Pre-Paid payment card industry expert and has designed systems and processes to manage the distribution, funding and operations of pre-paid cards for private industry and Government Agencies.


Enterprise Architecture


Using the EA Frameworks of Zachman and TOGAF Mr. Woda has developed numerous business, logical and physical architectures for Portals, Electronic Commerce, Identity Management, Civic Engagement and Learning Management for Financial Institutions and Government. 


Security and Audit Services


AWODA has a network of industry professionals that can carry out even the most technical IT security and audit projects.  These assessments include vulnerability scans, penetration tests, database security assessments and detailed code reviews. 

Mr. Woda also has experience in Governance Risk and Compliance systems and fraud detection systems. 


Risk Management


Extensive experience with NIST, DND Threat Risk Assessment Methodology, OCTAVE and Enterprise Architecture Risk Management.  Mr. Woda has also developed his own method called the Facilitated Risk Assessment Technique where he conducts workshops with business and technology staff and creates risk management plans.


Privacy Impact Assessments


Completed more than fifteen privacy impact assessments using the PIPEDA framework.  Wrote privacy policies and developed procedures for the privacy officer function.