Service detail
- External and internal penetration testing to determine current vulnerabilities and how attackers might access cardholder data.
- Internal penetration testing can be provided via on-site visit.
- Penetration testing is for all layers of the OSI model.
- Open Web Application Security Project (OWASP) focus for web-applications.
Highlights
- Complies with PCI DSS annual requirement that all level one service providers and merchants perform a penetration test of the network to demonstrate adequate security of the network.
- Enables business-aligned security controls to help manage regulatory compliance and look for compensating controls wherever possible.
- Helps reduce potential costs and complexity of security of non-compliance by providing guidance of the PCI latest requirements.
- Helps identify weaknesses that can lead to system compromise.