💼 11.2.2 Perform quarterly external vulnerability scans, via an Approved Scanning Vendor (ASV) approved by the Payment Card Industry Security Standards Council (PCI SSC).
-
Contextual name: 💼 11.2.2 Perform quarterly external vulnerability scans, via an Approved Scanning Vendor (ASV) approved by the Payment Card Industry Security Standards Council (PCI SSC).
-
ID:
/frameworks/pci-dss-v3.2.1/11/02/02 -
Located in: 💼 11.2 Run internal and external network vulnerability scans at least quarterly and after any significant change in the network.
Description​
Perform rescans as needed, until passing scans are achieved.
Quarterly external vulnerability scans must be performed by an Approved Scanning Vendor (ASV), approved by the Payment Card Industry Security Standards Council (PCI SSC).
Refer to the ASV Program Guide published on the PCI SSC website for scan customer responsibilities, scan preparation, etc.
Similar​
- Sections
/frameworks/pci-dss-v4.0/11/03/02
- Internal
- ID:
dec-c-e9a93990
- ID:
Similar Sections (Take Policies From)​
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| 💼 PCI DSS v4.0 → 💼 11.3.2 External vulnerability scans are performed. | 1 |
Similar Sections (Give Policies To)​
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| 💼 PCI DSS v4.0 → 💼 11.3.2 External vulnerability scans are performed. | 1 |
Sub Sections​
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|