Vulnerability Scanning
CSR offers al a carte Vulnerability Scanning services through our partner, Comply Guard Networks, a Payment Card Industry (PCI) Security Standards Counsel Approved Scanning Vendor (ASV).
Quarterly PCI Vulnerability Scanning is conducted over the Internet to help identify weaknesses and inappropriate configurations of websites, applications and Information Technology (IT) infrastructures with Internet-facing Internet Protocol (IP) addresses.
PCI required scans may apply to all merchants and service providers with Internet-facing IP addresses. Even if an entity does not offer Internet-based transactions, other services may make systems Internet accessible. Basic functions such as e-mail and employee Internet access will result in the Internet-accessibility of a company’s network. These seemingly insignificant paths to and from the Internet may be unprotected pathways into retailer, state and local government, healthcare institutions, service provider systems and more, and potentially expose cardholder data if not properly controlled.
Additionally, Vulnerability Scanning from Comply Guard Networks is automatically included and integrated with our PCI ToolKit® merchant portfolio compliance solution.
