Requirements
All Merchants (Levels 1, 2, 3 & 4)
- Quarterly external vulnerability scans
- Annual self-assessment questionnaire (Levels 2, 3, & 4)
- Annual onsite PCI audit (Level 1 only)
Solution
SecurityMetrics simplifies the compliance process for merchants.
SecurityMetrics Site Certification helps merchants quickly and easily
validate PCI compliance.
SecurityMetrics "Quarterly" Site Certification
• 12-month service
• PCI approved external vulnerability scanning
• Online PCI Self-Assessment Questionnaire (SAQ)
• Scans performed automatically each quarter
• Unlimited rescanning
• Unlimited calls to customer/technical support
• Use of Site Certified logo
• Acquirer reporting
Learn More...
Contact SecurityMetrics for a
custom quote for On-Site Audit Assistance.
|
|
What do I need to have scanned?
PCI DSS requirements state that you must select an approved scan
vendor to scan any public IP address
that connects to or can indirectly connect to the cardholder
data environment..
The cardholder data environment is that part of a network that
possesses cardholder data or sensitive authentication data, including
network components, servers and applications.
For most Merchants this means your
website and your
office Internet connection,
however, more devices may need to be scanned.
|
|
