Description
Quarterly external vulnerability scan by an Approved Scanning Vendor (ASV) required for PCI DSS compliance.
Requirements
- Complete external vulnerability scan
- Remediate any failing vulnerabilities
- Obtain passing scan report from ASV
Applicable To
MerchantsService Providers
Penalty Information
âš Missing quarterly scans can result in non-compliance finding during annual assessment.