Every Solution You Can Imagine – and More
What cybersecurity solution do you need? From Zero Trust to ADR, IAM, risk/privacy, data protection, AppSec and threat, securing digital transformation, to resiliency and remediation, we can build the right program to help solve your challenges.
A Single Partner for Everything You Need
Optiv works with more than 450 world-class security technology partners. By putting you at the center of our unmatched ecosystem of people, products, partners and programs, we accelerate business progress like no other company can.
We Are Optiv
Greatness is every team working toward a common goal. Winning in spite of cyber threats and overcoming challenges in spite of them. It’s building for a future that only you can create or simply coming home in time for dinner.
However you define greatness, Optiv is in your corner. We manage cyber risk so you can secure your full potential.
Optiv Cybersecurity Dictionary
An Approved Scanning Vendor (ASV) is an organization deploying security services and tools (sometimes called an ASV scan solution) to conduct external vulnerability scanning services to validate adherence with PCI DSS Requirement 11.2.2.
The scanning vendor’s ASV scan solution gets tested and approved by the PCI Security Standards Council (PCI-SCC) before being added to its list of Approved Scanning Vendors. For a company to be approved, they must first become a legal entity and fulfill all requirements to conduct business. Next, they have to go through a registration process with the PCI SSC that consists of reviewing the ASVs program guide, register for the testing, and provide administrative information and technical details by submitting an attestation of compliance. The application is reviewed by the council and either accepted or denied for testing.
ASVs often perform an external vulnerability scan of an organization’s network or website from the outside looking inward. In addition to determining PCI compliance, these scans from service providers can provide insight into any data security changes that need to be made.
October 18, 2017
The most widely known requirements in PCI DSS 3.2 section 11 with a timing implication are the quarterly external and internal vulnerability scans (11....
October 29, 2018
Merchants often put compliance spending at the top of their list for budgeting purposes because the consequences of non-compliance can be expensive....
October 22, 2018
Learn how a risk-centric approach can be applied to each PCI requirement.