The qualifying requirements for an ASV are:
For more information on PCI please visit https://www.pcisecuritystandards.org/
IT health checks identify vulnerabilities in IT systems and networks which may compromise the confidentiality, integrity or availability of information held on that IT system. CESG traditionally provided IT health check services for HMG and the wider public sector of systems handling protectively marked information. Demand for these services has grown and therefore, in line with similar CESG initiatives, a special partnership with industry is the most appropriate way of meeting this demand.
Companies belonging to CHECK are measured against high standards set by CESG. Therefore, HMG and CNI customers can be assured that they will receive a high quality service if the work is carried out under the Terms & Conditions of CHECK.
NTA Monitor is a founder member and certified Service Provider of the scheme. CREST (Council of Registered Ethical Security Testers) is a standards-based organisation for penetration test suppliers incorporating a best practice technical certification programme for individual consultants. Additionally, CREST provides its members with a framework of guidance including standards, methodologies and recommendations aimed at ensuring the very highest standards of leading edge security testing.
For more information on CREST please visit http://www.crest-approved.org/
CLAS consultants are approved to provide Information Assurance advice on systems processing protectively marked information up to, and including, SECRET. Potential customers of the CLAS Scheme should also note that if the information is not protectively marked then they do not need to specify membership of CLAS in their invitations to tender, and may be challenged if equally competent non-scheme members are prevented from bidding.
For more information please visit http://www.cesg.gov.uk/products_services/iacs/clas/index.shtml