E-SPIN PCI Compliancy Solution

Transcription

1 E-SPIN PCI Compliancy Solution

2 PCI Requirements For compliancy - Any company that accepts, processes, or stores credit card information needs to comply with the requirements set by the Payment Card Industry Security Standards Council. Merchants passing a PCI scan will receive the official certification they need to submit to their acquiring bank. To avoid penalties - Failure to comply with the Payment Card Industry security standards may result in heavy fines, restrictions or permanent expulsion from card acceptance programs. E-SPIN s PARTNER is a PCI Approved Scanning Vendor (ASV) -Vulnerability assessment scans must be performed quarterly by a PCI Approved Scanning Vendor. Why Use E-SPIN s Partner PCI Scan Services? ASV Program compliant - All E-SPIN s ASV partner PCI products enable you to run an exhaustive scan on your IP address(es) to identify vulnerabilities with a CVSS base score greater than 4.0 that would result in your company failing the PCI regulations. In depth reporting - You will receive a comprehensive vulnerability report detailing any security issues identified by the scan with remediation advice cross-referenced to thousands of online advisories to help you fix the problem. Backed by a PCI Approved Scanning Vendor (ASV) - Vulnerability assessment scans must be performed by a PCI Approved Scanning Vendor. E-SPIN ASV PARTNER: BeyondTrust, Saint Corporation, Tenable Network Security, Trustwave

3 PCI Scan Compliancy Gain PCI scan compliant with vulnerability scanning by a PCI Approved Scanning Vendor Get 'Ready-to-submit' PCI compliance reports to send to your merchant bank Detailed reports identify security holes exposed by E-SPIN s ASV partner's 30,000+ tests and contain actionable fix recommendations PCI 'self assessment' questionnaire available via online wizard Features Credit Card logo confirming your trustworthiness to take credit card details online Secure web-based interface allows you to schedule up to ten PCI scans per quarter on up to five servers IP Address Packs can be added to your license to allow you to scan additional external and internal IP addresses Now includes internal vulnerability scanning in the cloud using patent-pending technology Why do I need PCI Scan Compliancy? You are an online merchant with between one and five servers that must provide proof of PCI Scan Compliance to their merchant bank Purchase an Additional IP Address Pack and run scans over an additional number of IP addresses You need comprehensive post scan reporting alongside precise, actionable threat mitigation advice You need automatically generated, 'ready-to-go' PCI Scan Compliance reports for multiple servers and server types that can be immediately submitted to an acquiring bank You would benefit from the versatility and convenience of running up to ten fully featured on-demand scans per quarter to achieve PCI Scan Compliancy Why E-SPIN s ASV partner PCI Scan for your PCI scan compliance? PCI Scan Compliancy customers receive a Credit Card logo for their website Gain competitive advantage by reassuring customers that you are authorized to accept credit cards by placing a high visibility trust indicator on your website

4 PCI Scan Compliancy Enterprise PCI scan compliance is painless with E-SPIN s ASV partner service thanks to easy management and a scalable scanning engine that grows with your company. The PCI Scanning enterprise addition allows unlimited scanning on 20 IP addresses externally and internally. Benefits Gain PCI scan compliance with network and server vulnerability scanning by a PCI Approved Scanning Vendor Get 'Ready-to-submit' PCI compliance reports to send to your acquiring bank Schedule unlimited scans on up to 20 external or internal IP addresses Additional IP Address Pack allows you to run unlimited scans over an additional number of external and internal IP addresses. Ability to configure scans according to individual test, test category, IP ranges and over 60 user definable parameters Detailed reports identify security holes exposed by E-SPIN ASV partner's 30,000+ tests and contain actionable fix recommendations PCI 'self assessment' questionnaire available via online wizard Features Credit Card logo confirming your trustworthiness to take credit card details online Why do I need PCI Scan Compliancy Enterprise? Choose PCI Scan Compliancy Enterprise if: You are a large merchant, Web-host or Payment Gateways that require PCI Scan compliance on multiple servers and server types in large, distributed networks You need automatically generated and 'ready-to-go' PCI scan compliance reports for multiple servers and server types that can be immediately submitted to your acquiring bank You need the flexibility and power to schedule up to 100 on-demand vulnerability audits per quarter using the full complement of over 30,000+ individual vulnerability tests You need comprehensive post scan reporting including trend analysis and executive summaries alongside precise, actionable threat mitigation advice? You need the ability to fine tune the scan engine and create custom, pre-defined scans to test your servers according to specific threat profiles You would like to conclusively reassure website visitors that you are authorized to accept credit cards with a high visibility trust indicator Why E-SPIN s ASV Partner service for your PCI scan compliance? The product contains all the functionality of the regular with several enhancements designed to specifically cater to larger networks, including: Gain PCI compliance on 20 IP addresses per quarter Schedule 100 on-demand scans per quarter Ability to fine-tune the PCI Compliance engine run highly granular, custom scans Full access and control over the entire suite of over 30,000+ vulnerability tests Advanced reporting capabilities

5