We have a Linux Server Cluster that hosts an ecommerce website. We're in the process of PCI DSS Compliance, and need some advice on best-practice and configuration. This is probably not hands on, but rather a consultation to train us in how to achieve PCI Compliance.

We're not even SELinux permissive yet, so we have to cross over, and also have some issues with encryption, so would be important to be SELinux savy, have done PCI Audits before, and know our server software:

Nginx
Mysql
PHP
Perl
C+
Apache Tomcat/SOLR

Thanks