Important Steps to an Effective PCI DSS Assessment