PCI Compliance Services

PCI-DSS, PA-DSS Compliance and Validation Services

ASV (Approved Scanning Vendor)

NCI is an Approved Scanning Vendor, providing web-portal access to a powerful scanning engine. NCI will set up the scans of your external IP addresses and establish false-positive resolution. SAQ completion and attestation is also available through our nci.SCAN ASV portal.

PCI Compliance Program

Need help achieving compliance? Starting with a QSA review and Scope assessment our team of IT Security and Project Management professionals can help your organization at every step of the way.

Validation Services Overview

PCI DSS compliance requires a number of quarterly and yearly assessments and reviews. Do you have what you need?

Penetration Testing

Conducted without prior knowledge of the environment (blind), the penetration test identifies potential security holes and then exploits them to prove a vulnerability exists.

Policies and Procedures

The weakest link in security can often be the humans in your environment. Ensure they have the knowledge they need to be an active and supportive element of your security infrastructure.

SAQ Validation

NCI's team of QSA's will review your Self-Assessment Questionnaire with you and provide the validation required for submission to your acquirer.

PCI Validation Assessment

NCI provides Canadian QSAs to perform the on-site PCI DSS Validation Assessment and complete the Report of Compliance (RoC).

PCI DSS Training

PCI DSS compliance requires a comprehensive training program for your employees

Vulnerability Scans

Quarterly scans of external and internal IP addresses (required by the PCI DSS) to ensure that configurations remain secure and that the required software patches are in place.