PCI DSS ASV Services

A simplified approach to PCI

Whether you’re a small merchant or large enterprise that processes or transmits cardholder data, you’re required to meet or exceed Payment Card Industry Data Security Standards (PCI DSS) for securing and protecting cardholder data when using Internet-facing Internet protocol (IP) addresses. Vendors and merchants who must abide by the PCI DSS are required to perform vulnerability scans of their networks through an Approved Scanning Vendor (ASV) to achieve security validation.

Liquid Networx is an experienced PCI Certified ASV that has the knowledge and expertise to help you implement security best practices and achieve compliance. Our simplified approach to compliance provides a centrally available, user-friendly, feature-rich platform for managing secure business environments.

Our full suite of security and compliance auditing resources include:

  • ASV Scanning
  • PCI DSS ASV Validation Documentation
  • Comprehensive Vulnerability Remediation Information
  • Automated Exception Management
  • Online PCI DSS SAQ and SAQ Guidance and Assistance
  • Risk-Based Remediation Recommendations (based on SAQ answers)
  • All Required PCI SSC Compliant Validation and Supporting Documentation

For small to medium-sized merchants (1- 50 ips) Liquid Networx has developed the ComplyShield PCI Validation Portal. This cloud-based solution provides the information you need to ensure staff or service providers are addressing external network threats in a timely manner, and delivers an automated PCI DSS Self-Assessment Questionnaire to serve as a risk-based roadmap for network remediation and the compliance validation documentation you need to file with your financial institution.

For larger entities with more complex compliance validation and risk mitigation requirements, Liquid Networx offers proprietary tools and proficiency to implement a vulnerability identification and management program to meet all of your regulatory needs. It is specially designed to meet the following PCI DSS requirements:

6.1

Ensure that all system components and software are protected from known vulnerabilities by having the latest vendor-supplied security patches installed. Install critical security patches within one month of release.

6.2

stablish a process to identify and assign a risk ranking to newly discovered security vulnerabilities.

11.2.1

Perform quarterly internal vulnerability scans.

11.2.2

Perform quarterly external vulnerability scans via an Approved Scanning Vendor (ASV) approved by the Payment Card Industry Security Standards Council (PCI SSC).

11.2.3

Perform internal and external scans after any significant change.

 

All Liquid Networx solutions are supported by PCI DSS certified Qualified Security Assessors (QSA’s) and Approved scan vendors (ASV’s).