Tenable Network Security was recognized at the 10th Annual Info Security Industry’s Global Excellence Awards dinner held last week in San Francisco. Nessus®/ Nessus Perimeter Service™ received a Global Excellence Award in the PCI Compliance Category. The Info Security Products Guide recognizes that over two-thirds of all PCI-Certified Approved Scanning Vendors (ASV) use Nessus, making Nessus the preferred vulnerability scanning solution for those companies that provide compliance validation services.
The Nessus vulnerability scanner boasts a continuously-updated library of more than 60,000 vulnerability and configuration checks, more than 55,000 additional audit and compliance checks, and the support of Tenable’s expert vulnerability research team. Nessus provides the most current, accurate, and complete results to its more than 20,000 customers.
From a Payment Card Industry Data Security Standard (PCI DSS) compliance perspective, companies use Nessus to satisfy their internal network scanning requirements (PCI DSS 11.2.1) and use Perimeter Service (Tenable is also an ASV) to satisfy their external network scanning requirements (PCI DSS 11.2.2).
Nessus/Perimeter Service are each offered in 1-, 2-, or 3-year subscriptions, as well as in various bundled solutions. Both versions allow unlimited scans of unlimited IP addresses/ranges for the licensing period. For PCI ASV quarterly validation, Perimeter Service subscribers may submit up to two PCI scans per calendar quarter for review and approval in order to generate the required attestations and executive/detailed reports for submission to merchant banks and the card brands.
Have any questions about PCI? You can ask them at the PCI Discussion Forum, Straight Talk about PCI, moderated by Tenable’s PCI expert, Jeff Man.