St. Louis-based Firm Approved Uses Its Sentinel Scanning Service to Validate Adherence with PCI DSS Standards
(January 18, 2016) St. Louis, MO – Parameter Security, an ethical hacking and information security firm, is proud to announce its Sentinel PCI scanning service has successfully completed the PCI Scanning Vendor Compliance Testing and Approved Scanning Vendor certification. This credential affords Parameter Security the authority to perform external vulnerability scanning services to validate adherence with the external scanning requirements of PCI Data Security Standard (PCI DSS) for any organization that stores, processes or transmits payment cardholder data.
Approved Scanning Vendors (ASV) are organizations that have a set of security services and tools to validate adherence with external scanning requirements of the PCI DSS Requirement 11.2.2. Parameter Security’s Sentinel PCI scanning service was tested and approved by PCI Security Standards Council and is now listed on the PCI website under List of Approved Scanning Vendors.
The PCI Security Standards Council maintains an in-depth program for security companies certified as Approved Scanning Vendors (ASV), and requires them to be re-certified as ASVs each year.
As an ASV, Parameter Security’s Sentinel scanning service determines compliance to PCI DSS for all level 1 through 4 merchants and service providers. In order to test varying levels, clients can expect services to include all or some of the following:
- External vulnerability scanning to better protect systems and networks
- Scanning all IP ranges and domains to identify active IP addresses and services
- Remediation recommendation and a means for disputing findings
- Documentation and certification of PCI DSS compliance or non-compliance
- Submission of the ASV Scan Report Attestation of Scan Compliance
- Maintenance of an internal QA process for ASV efforts in accordance with PCI SSC
Sanctioned by Visa Inc., MasterCard Worldwide, American Express, Discover Financial Services and JCB International, PCI DSS mandates that merchants and service providers comply with information security controls and processes to safeguard data. Requirements for PCI DSS include: security management, policies, procedures, network architecture, software design and other defensive measures.
“Parameter Security’s ASV Certification, in addition to our Qualified Security Assessor (QSA) Certification, allows us to continue our diverse services to our clients in the PCI DSS industry” said Renee Chronister, CEO, Parameter Security. “In addition to being a QSA and ASV, as certified ethical hackers, we will not only help you become PCI compliant, but more importantly, improve your overall information security by testing your security posture from a hacker’s point of view.”
About Parameter Security
Parameter Security™, an ethical hacking firm, was born out of the need to help protect our businesses, government, health care, financial and educational institutions and various organizations globally from vicious hackers. As Certified Ethical Hackers, we emulate the minds and behaviors of malicious hackers to test the security of your systems and employees. What makes us different is that we use the information gathered to empower you by explaining how we gained access to your sensitive data, the type of information we retrieved and offer recommendations on how to improve your overall information security. Parameter Security offers IT compliance audits (PCI, GLBA, HIPAA, NERC, etc.), penetration testing, vulnerability assessments, social engineering, wireless security audits, secure code reviews, security training, computer forensics and more. For more information, contact us at 314.442.0472 or visit www.parametersecurity.com.