Managed Vulnerability Scanning 2018-04-11T10:53:30+00:00

MANAGED VULNERABILITY SCANNING

Nettitude provides a comprehensive Managed Vulnerability Scanning (MVS) solution, using leading technology deployed by security professionals, to scan and report your assets for known vulnerabilities.

Using our team of security professionals, who understand the current threat landscape, offensive techniques of attackers and how to achieve a strong security posture, Nettitude’s MVS service will give you confidence and power to stay on top of emerging vulnerabilities and changing vulnerability landscape.

If you would like to know more about vulnerability scanning, and how it could help your organization then get in touch with Nettitude today. Our team are among the highest qualified in the industry and are on hand to deliver top level vulnerability scanning services. Please fill in the form and a consultant will be in touch within 24 hours.

Request a free quote

CREST and PCI ASV certified

What is Vulnerability Scanning?

Being able to identify your vulnerabilities before they are exploited is crucial in today’s connected world. Vulnerbaility scanning is a fundamental component of any security testing program identifying new vulnerabilities and mis-configurations across your IT systems. The information collected is then presented in actionable reports and dashboards ready for system administrators to remediate.

RELATED BLOG

Our increasingly connected world is going to be an exciting and interesting one for sure:

THE INTERNET OF THINGS

How can Nettitude help?

Nettitude have a complete Managed Vulnerability Scanning (MVS) solution powered by market leader – Tenable.io. The solution provides comprehensive coverage for all internal, external infrastructure, web applications and containers. Scans are run from either internal or cloud -based virtual scanner appliances and results are immediately available in the Tenable.io portal. Your team will have full access to the portal where they can generate new adhoc scans, custom reports and access remediation advice 24/7. Nettitude’s qualified security consultants are available to guide your remediation efforts offering real world remediation advice, guiding priorities and work-arounds where needed.

KEY FEATURES:

  • Powerful dashboards
  • Track mitigation efforts
  • Continuously identify new vulnerabilities
  • Unlimited scan frequency
  • Fully managed service
  • Trained consultants on hand
  • Real world remediation advice
  • Monthly or Quarterly custom reporting

THIRD PARTY VULNERABILITY ASSESSMENT FRAMEWORKS

PCI ASV – Vulnerability Assessments

As an Approved Scanning Vendor (ASV) company delivering services across the globe, Nettitude is able to deliver internal and external vulnerability assessment services against the requirements defined in the PCI Data Security Standard (DSS).

Requirement 11.2.1 requires organisations to deliver quarterly internal vulnerability scans to identify “high-risk” vulnerabilities as identified in requirement 6.1. Nettitude is able to deliver these service for clients themselves or alternatively provide tools and techniques to enable the client to manage this approach themselves.

Requirement 11.2.2 requires organisations to undertake quarterly ASV scans to assess their external network infrastructure and applications. As an ASV that has been delivering services in this space for many years, Nettitude is able to deliver full circle services against this requirement.

UK Gov – Cyber Essentials Scheme

In April 2014, the UK government launched its ‘Cyber Essentials’ scheme.

This program is aimed at SME size organisations and assesses the following five key controls:

  • Boundary firewalls and internet gateways
  • Secure configuration
  • Access control
  • Malware protection
  • Patch management

This scheme requires organisations pursuing either the silver or gold tier certification to undertake an independent security assessment or vulnerability test. As a CREST company, Nettitude is an active participant in this program and proactively delivers advice and guidance to clients wishing to meet the ‘Cyber Essential’ scheme requirements.