Quarterly PCI ASV scans are a requirement of organization who need to demonstrate their compliance with requirement 11 of PCI DSS. The requirement mandates entities to, among other things, scan the internet facing assets of the Cardholder Data Environment (CDE) on a quarterly basis or to perform both internal and external vulnerability scans after any significant change.
Secureism has partnered with a PCI ASV (Approved Scanning Vendor) to provide the mandatory compliance scanning of internet-facing assets, fulfilling the PCI ASV external network scanning requirement.
PCI DSS ASV Scan needs to be conducted on all Internet-facing IP addresses and/or domains of merchant or service provider. Sometimes, organizations may have many IP addresses available while only few of those Ip addresses are used for card acceptance or processing. In these cases, we help your organization to define the appropriate scope of the scan needed to comply with standard requirements.
Our vulnerability scan tests all IT assets in scope and recommends valuable mitigation steps to comply with PCI DSS requirements.