mile2 has been providing Penetration Testing, Ethical Hacker Training, Digital Forensics, and a CISSP training course since 2001.
English Arabic Chinese (Traditional) Dutch French German Greek Italian Japanese Korean Portuguese Russian Spanish
mile2-logo-transparent


PCI Compliance

 

mile2’s penetration testing generally follows the OSSTMM (The Open Source Security Testing Methodology Manual). The OSSTMM focuses on the technical details of exactly which items need to be tested, what to do before, during, and after a security test, and how to measure the results.

For web application penetration testing, mile2 adheres to OWASP (Open Web Application Security Project) standards. OWASP provides a framework of recommendations that can be used as a benchmark to help identify vulnerabilities and risks in web applications.pci-credit-card

mile2 is partnered with both Saint and Core Impact, both leaders in IT Security Software.  Using their PCI ASV (Approved Scanning Vendor) and using state of the art custom security tools and processes, mile2 exceeds industry standards by implementing a 4-Phase PCI Penetration Testing Process.  Testing is performed by qualified industry professionals, holding major information technology security certifications such as CISSO-CISSP (Certified Information Systems Security Professional), CISA (Certified Information Systems Auditor) and CPTE (Certified Penetration Testing Engineer).

mile2 is able to help merchants manage data security risks, evaluate the security of their systems that store payment account data, and assist them in achieving compliance with the PCI data security standard (DSS) using state of the art security tools and processes.

PCI requires organizations to monitor and test networks to find and fix vulnerabilities on a regular basis.  mile2 can help merchants meet and exceed the following PCI requirements:

11.2 Run internal and external network vulnerability scans at least quarterly and after any significant change in the network

11.3 Perform external and internal penetration testing at least once a year and after any significant infrastructure or application upgrade or modification, including network- and application-layer penetration tests.

6.6 For public-facing web applications, address new threats and vulnerabilities on an ongoing basis and ensure these applications are protected against known attacks by either of the two methods.

At the conclusion of the testing process, clients receive a mile2 SAR (Security Assessment Report) which includes comprehensive information to empower clients to make the necessary changes to adhere to compliance standards.


Copyright © 2010 mile2. All Rights Reserved. Click here for trademark info.
mile2: A Worldwide Name in IT Security! mile2 provides services for companies like Penetration Testing, Ethical Hacker Training, Digital Forensics, and mile2's
upgrade to Certified Ethical Hacker Certification known as CPTEngineer and CPEH.
mile2 designs, develops, and delivers Information Security training and consulting services that meet military, government,
private sector and institutional specifications. mile2 also provides security vulnerability scans and assessments to clients around the world.
You can become an Ethical Hacker with our answer to Certified Ethical Hacker Training. Click Here
--Discover Digital Forensics--
Support Ticket
Sales Chat
Skype mile2
Facebook
Twitter