Structured Extends PCI Compliance Services to Canada


These services will provide Canadian customers with greater choice and access to a deep bench of regulatory compliance experts across North America.

PORTLAND, Ore. (Feb. 6, 2024) – Structured is pleased to announce it is extending its Payment Card Industry (PCI) consulting services to Canadian merchants and service providers.

As a Qualified Security Assessor (QSA) company since 2011, Structured performs PCI assessments to fulfill reporting requirements such as Reports On Compliance, Attestations of Compliance, and Self-Assessment Questionnaires.

With this new development, these same PCI services are now available to Canadian organizations that transact business via card processing for e-commerce, mobile payments, point of sale (POS), point-to-point encryption (P2PE) systems, and physical or virtual terminals.

“Structured employs highly experienced QSA staff who have been working with PCI since DSS version 1.0 in 2005,” said Rob Wayt, Structured’s director of governance, risk and compliance (GRC), who is himself a QSA with more than 30 years of security and compliance expertise.

The standard is now version 4.0, bringing a host of changes to compliance requirements that merchants and service providers must now meet. Some of the most impactful new controls include mandating that merchants can detect web-based attacks, perform audit log reviews, and confirm through documentation the extent they fall under the scope of PCI requirements.

For merchants and service providers that are more mature in their security operations, 4.0 also may permit them to take a more customized approach to meeting the intent of relevant controls.

“Structured’s depth of experience in all aspects of PCI is a true differentiator, and we are eager and ready to help Canadian businesses achieve and maintain compliance from wherever they happen to be in their security maturity,” Wayt added.  

Beyond the PCI services mentioned above, Structured offers a wealth of GRC services that are responsive to all regulatory frameworks. These services include gap analysis assessments, risk assessments, penetration testing, social engineering (phishing/vishing), and tabletop exercises that test and assess threat event readiness.


About Structured

Structured is an award-winning solution provider delivering secure, cloud-connected digital infrastructure and managed IT services. For more than 30 years, we’ve helped clients through all phases of digital transformation by securely bridging people, business and technology.

We provide design guidance, engineering assistance, and product recommendations that adhere to best practices, boost ROI, and – most importantly – maximize information security and regulatory compliance. Customers trust us to provide valuable insight throughout the process of selecting and implementing secure and scalable IT strategies, platforms, and processes that meet modern expectations and drive measurable improvements throughout the enterprise.

Follow us on LinkedIn, and Twitter.

Search By Category