Validation Services Overview

PCI DSS compliance requires a number of quarterly and yearly assessments and reviews. Do you have what you need?

NCI offers a number of PCI validation services that can be packaged together according to your specific needs:

SAQ Validation: NCI's team of QSA's will review your Self-Assessment Questionnaire with you and provide the validation required for submission to your acquirer.
PCI Validation Assessment: NCI provides Canadian QSAs to perform the on-site PCI DSS Validation Assessment and complete the Report of Compliance (RoC).
ASV (Approved Scanning Vendor): NCI is an Approved Scanning Vendor, providing web-portal access to a powerful scanning engine. NCI will set up the scans of your external IP addresses and establish false-positive resolution. SAQ completion and attestation is also available through our nci.SCAN ASV portal.
Penetration Testing: Conducted without prior knowledge of the environment (blind), the penetration test identifies potential security holes and then exploits them to prove a vulnerability exists.
Vulnerability Scans: Quarterly scans of external and internal IP addresses (required by the PCI DSS) to ensure that configurations remain secure and that the required software patches are in place.