Approved Scanning Vendor (ASV) Certification

Requirement 11.2.b of the PCI DSS defines the requirement for having a passing external vulnerability scan each quarter. This scan must be performed by an ASV.

While the PCI compliance requirements are relatively new, Secure Enterprise Computing has been performing IT security assessments for 15 years. We are expert in the use of the scanning tools and have chosen specifically to partner with Qualys in the use of their vulnerability scanning solution to perform this service.

Secure Enterprise Computing, Inc. (SEC) has been an Approved Scanning Vendor (ASV) since 2006 and has years of experience utilizing vulnerability scanning technologies in its security practice.

Our value in this otherwise automated process is providing our Customers with the ability to understand the process—what is in scope, how the scanning tools work, explaining remediation steps, and documenting false positives.