Level 1 Assessments
The most rigorous PCI DSS validation, required for merchants processing over 6 million transactions annually
What is it?
A Level 1 Assessment is the most rigorous PCI DSS validation, required for merchants or service providers that process over 6 million transactions annually—or as mandated by card brands. This service includes a formal audit and Report on Compliance (ROC) conducted by a Qualified Security Assessor (QSA).
The rigorous nature of this assessment ensures that organizations implement robust security measures to protect cardholder data, ultimately fostering consumer trust and safeguarding against data breaches.
Our Process
1
Engagement Kickoff & Scope Finalization
We begin by defining the audit scope—including CDE boundaries, systems, third parties, and network segments.
3
Formal QSA Audit (ROC & AOC)
NDB’s QSA conducts interviews, document reviews, and system testing to validate full compliance with PCI DSS.
5
Remediation Support (if needed)
If gaps are found during testing, we assist with remediation and provide rapid follow-up testing to close the gaps.
2
Pre-Audit Readiness Review
Before official fieldwork, we assess your control environment, collect documentation, and identify red flags.
4
Evidence Collection & Testing
We help your team gather logs, configurations, access records, and scan results required to support audit findings.
6
Report Development & Final Review
We compile the full ROC and AOC for final review and submission to acquiring banks or payment brands.
Your Deliverables
PCI Report on Compliance (ROC)
Attestation of Compliance (AOC)
Audit Evidence
Package
Remediation Summary (if applicable)
Executive Compliance Statement
Why Choose NDB?
NDB is dedicated to delivering a comprehensive and efficient PCI Level 1 Assessment process tailored to your organization’s unique needs. Our team of certified QSAs possesses extensive experience in guiding organizations through the complexities of PCI compliance.
We are committed to ensuring a smooth and successful assessment, equipping you with the insights and tools necessary to enhance your security measures. By partnering with NDB, you gain a trusted ally in navigating the rigorous demands of PCI Level 1 compliance, ultimately fostering a safer environment for your customers and your business.
Key Highlights about NDB:
Expert Team: Certified professionals with extensive experience in compliance and cybersecurity.
Comprehensive Services: Offering a wide range of services, including SOC 1, SOC 2, PCI DSS, ISO 27001, HIPAA, GDPR, CCPA, and more.
Tailored Solutions: Customizing our services to meet the specific needs of various industries and organizational sizes.
Commitment to Excellence: Focused on delivering high-quality services that empower clients to thrive in a complex regulatory environment.
Client-Centric Approach: Prioritizing collaboration and communication to build strong partnerships with our clients.
Canada’s Leading Provider for All Things Compliance
Fixed-fee services for SOC 1/SOC 2, PCI DSS, ISO 27001, HIPAA, HITRUST, GDPR, Pen Testing, Data Privacy, and so much more.