SI Secure
SI Secure
IndustriesServicesProductsCompanyLibrary
SI Services


PCI Recurring Services

Maintaining PCI compliance requires recurring testing to verify that nothing has changed in the data security environment. These validation reports must be submitted to the PCI Security Council and card vendor. Security Innovation can provide the necessary annual onsite testing and recurring scanning procedures to organizations interested in streamlining their PCI reporting activities.

:: For information on building a sustainable PCI Program, please contact us at 978.694.1008 x24 or email

Annual Reassessment

This process provides re-execution of the PCI Audit done the previous year. Most organizations do not have substantial changes to their network and application infrastructure from the previous year; thus, some of the assets generated in the original assessment might be reusable. Annual on-site testing and re-certification is required by all Level 1 & 2 Service Providers and all Level 1 Merchants and must be conducted by a Qualified Security Assessor (QSA).

Recurring Network & Vulnerability Scan

Maintaining PCI compliance requires organizations to obtain a quarterly network scan. Security Innovation can provide the network scan and augment it with an application layer vulnerability scan that identifies vulnerabilities in operating systems, services, and devices that could be used by hackers to target your company's private network.  This value added scan includes:

automated web application scan of all web-facing applications that are in scope
manual testing and validation of vulnerabilities found
expert analysis of results and validation of  severity scores
identification and documentation of false positive results
optional remediation of issues uncovered to attain compliance

Readiness Consulting

To help you better understand the steps you need to take to be compliant, we offer a complete PCI Audit pre-assessment.  You'll receive specific remediation recommendations so that you have an opportunity to fix them prior to your official PCI audit. We also provide consulting services that help you address larger programmatic or policy issues that might prevent you from passing the PCI Audit.  :: more>>

Audit

The official PCI audit is an examination of personnel, policies, and information systems by our Qualified Security Assessors who execute the audit, record the results, and file the necessary reports with the PCI Security Council and credit card vendors. We offer this service as a one-time event or with annual re-execution of the original PCI Audit and appropriate scan.  :: more>>

Annual Self-Assessment Questionnaire Preparation

Security Innovation can assist Level 3 Service Providers and Level 2-4 Merchants who don’t have the time, expertise or desire to conduct the necessary PCI qualification effort required for filing self-assessment compliance reports. We will serve as your proxy to conduct the appraisals of your environment and systems and will complete the appropriate report(s) and present it to you for signature by the necessary executive.

:: For information on building a sustainable PCI Program, please contact us at 978.694.1008 x24 or email

back to the top of the page