CISP Network Scanning.pdf

About Global Documents

Global Documents provides you with documents from around the globe on a variety of topics for your enjoyment.
Global Documents utilizes edocr for all its document needs due to edocr's wonderful content features. Thousands of professionals and businesses around the globe publish marketing, sales, operations, customer service and financial documents making it easier for prospects and customers to find content.
PCI scan compliance PCI Certification vulnerability report
Page 1 of 4 - CispScan Brochure
PCI Scanning Service
Requirement Overview
The Payment Card Industry (PCI) Program provides a comprehensive approach to
evaluating and improving network data security. The program provides acquiring
members with the ability to deploy security compliance programs, ensuring that
merchants, Member Service Providers, and data security vendors are adequately
protected against hacker intrusions and account data compromises.
Merchants categorized by PCI as Level 1, 2, or 3 are affected by this regulation.
These merchants are required to perform quarterly network security scans on their
external facing networks. Additionally, affected merchants have to demonstrate
compliance with  their acquiring banks by filing a report from an approved scanning
vendor to prove that  their infrastructure is secure and is 100% free of any critical
vulnerabilities (i.e. Vulnerabilities with a severity level of 3 or higher).
For more details on merchant levels and the corresponding requirements, please visit:
https://sdp.mastercardintl.com
Solution Overview
TeamInfoSec is a leading international information security consultancy firm based in
London and Dublin.
We have developed this online PCI scanning solution known as CispScan.
This solution has been tested and approved by MasterCard International (Cert
#4087-01-02).
Our service brings the speed, accuracy and cost-effectiveness of the software-as-a-
service model to solve this requirement.
Page 2 of 4 - CispScan Brochure
How does it work?
Simply enter the details of your relevant publicly facing IP addresses and we will
scan the associated devices with the relevant criteria and create the required report.
The report includes:
 Executive Summary
 Format Accepted by Banks (approved by MasterCard)
 List of vulnerabilities

Information on how to fix any vulnerabilities found
 PCI Assessment status (Pass or Fail)
 Certification logo and entry into verification registrar for successful clients
PCI Certification
Successful clients that pass the analysis, will obtain a unique code to display the PCI
Certification logo on their website.  This code can be used by visitors to their website
to verify the merchant is PCI compliant.
Merchant Benefits
Customers and consulting partners supporting PCI certification will benefit from the
following:
Fast track to PCI compliance with a fully automated process for quarterly scanning.
Accurate scan results that are up-to-date and include audits for the most recent
threats with industry-leading 99.997% accuracy, easily understood by merchant staff
on a quarterly basis
Verification of fixed vulnerabilities in order to expedite and simplify the compliance
process
Extremely Cost effective fixed price solution with no additional software,
applications, or third parties required to produce SDP compliance scanning reports
Page 3 of 4 - CispScan Brochure
Features
We scan for over 5,000 known vulnerabilities on all TCP and a subset of UDP ports.
There are two PCI compliance reports available, Executive and Technical.
The report format has been approved by MasterCard to meet the PCI certification
requirements. Users can download the PCI compliance Technical Report and use
this to validate and remediate any identified vulnerabilities.
Users can also download the PCI compliance Executive Report and submit it to the
acquiring bank after they perform scans on their external networks and  if necessary
fix any identified medium and high severity vulnerabilities with severity ratings of 3, 4,
and 5.
About our PCI Scanning Service
Our service brings the speed, accuracy and cost-effectiveness of the software-as-a-
service model to enterprise security. Its vulnerability management and policy
compliance service enables organizations to assess and manage business risk.  It
gives users an automated way to map global assets, identify vulnerabilities  on their
networks, prioritize remediation according to business risk, and ensure regulatory
compliance—with no infrastructure to deploy or manage.
Pricing
Single Scan - Up to 5 IP addresses (devices) was US$299  Now US$199
Quarterly Scanning - Up to 5 IP addresses (devices) was US$999 Now US$499
Each additional device per report - was US$100 Now US$50
Pricing includes PCI certification register and logo for successful clients.
If you are a reseller or have a large number of IP devices please contact us for
a quotation.
Further information and free trial:
Contact: TeamInfoSec

Office:
+353-1-845 7310

Email :
info@CispScan.com

Fax:
+353-1-845 2921

Web:
www.CispScan.com

Skype:
teaminfosec
Page 4 of 4 - CispScan Brochure
S A M P L E    O U T P U T