Internal Network Vulnerability Scanning
Requirement 11.2.1 of the PCI Compliance requires a vulnerability scan conducted from inside the logical network perimeter on all internal-facing hosts that are within or provide a path to an entity’s cardholder data environment.
To demonstrate PCI compliance, merchants, and service providers are required to perform Internal vulnerability scans of all the hosts inside the network perimeter quarterly and after any significant change in the network (such as new system component installations, changes in network topology, firewall rule modifications, product upgrades) to identify vulnerabilities. We can access your internal network by a VPN connection and perform the internal Vulnerability scans to identify vulnerabilities and provide detailed analysis and remediation guidance to fix the vulnerabilities and demonstrate PCI Compliance.
Pricing
Tier 1
- Upto 50 IP Addresses
- 1 Maintenance Scan / Quarter
- Remediation Guidance
- Voice & Email Support
- Dedicated Account Manager
Tier 2
- Upto 100 IP Addresses
- 2 Maintenance Scans / Quarter
- Remediation Guidance
- Voice & Email Support
- Dedicated Account Manager
Tier 3
- Upto 256 IP Addresses
- 2 Maintenance Scans / Quarter
- Remediation Guidance
- Voice & Email Support
- Dedicated Account Manager
Features
Automated Network Vulnerability Scanning
Cloud-based scanning
Zero false positives
Dynamic IP Support
SCADA Enabled
Sensitive Data Scanning
Production Safe
Reporting with Remediation plan
Support to process Exceptions