PCI DSS ASV (Approved Scanning Vendor) Compliance Scanning
PCI DSS ASV Scanning tests the security of the external hosts covered under PCI DSS. During the scan, Secure Ideas identifies all of the available systems and begins probing the hosts for open ports. The communications with each open port are then analyzed to identify the service type, and, if possible, the software version of the service listening on that port and other details about the system such as operating system. This information is then compared to an extensive list of known vulnerabilities.
Do I need a PCI DSS Compliance test?
Requirement 11.2.2 of DSS 3.2 (11.3.2 of DSS 4.0) requires that merchants have quarterly external scans conducted by an Approved Scanning Vendor (ASV). Secure Ideas has partners with Qualys to perform the required PCI DSS scanning. PCIScout provides clients with certified scan reports for PCI DSS compliance and the information necessary to fix flaws in their network.
PCIScout is scoped based on the number of external hosts in scope. All hosts in scope include unlimited scans for a one (1) year period.
Secure Ideas’ pricing for this service is an annual fee. Each additional host in scope is an additional cost for unlimited scans. In addition to this base price per host, there is a one-time setup fee.
|Number of Host||Price-range|
|Up to three (3)||$500|
|Additional Host(s)||$25 each|
|*One-Time Setup Fee||$100|