MSP Risk Intelligence

Feedback for MSP Risk Intelligence

MSP Risk Intelligence

Submitted by (@supportcrs)

Becoming an ASV through PCI SCC

In order for certain levels of PCI compliance to be valid if filling out the self assessment questionnaire (SAQ), a rigorous scan must be completed by an Approved Scanning Vendor (ASV). As the PCI/PAN scan seems to perform well, I think it would be a logical next step to apply for this, providing benefit to customers in being able to sign off on SAQs, and would also bring more value and perhaps customers to the tool. ...more »

MSP Risk Intelligence

Submitted by (@jschowalter)

Executive Summary Report

I would like to see a report that is a high level overview of an "organization". Show the top 5 and bottom 5 "Data Breach Risk by Host" that site/client. Break down the overall percentages of vulnerabilities, by vendor, for the whole site. Give the overall stats for "Unprotected Data Scan Statistics" for the whole site. Include the total liability $ for the entire site/client/organization. Provide totals of the things ...more »

MSP Risk Intelligence

Submitted by (@jschowalter)

Executive Summary Report

I would like to see a report that is a high level overview of an "organization". Show the top 5 and bottom 5 "Data Breach Risk by Host" that site/client. Break down the overall percentages of vulnerabilities, by vendor, for the whole site. Give the overall stats for "Unprotected Data Scan Statistics" for the whole site. Include the total liability $ for the entire site/client/organization. Provide totals of the things ...more »

MSP Risk Intelligence

Submitted by (@dionjones)

Batch download of individual Risk Intelligence reports

As an MSP, I'd like to be able to perform a batch download of the individualized device reports in PDF format to provide their area of risk in mass format.

 

Currently there is a report that combines all of the data from the devices or the ability to create a report which has links to all of the individual PDFs but this does not suit our needs when performing scans for large customers.

MSP Risk Intelligence

Submitted by (@shieldedge)

Risk Intelligence - Whitelist

The only client I have run this on had files that were flagged as containing credit card information when, in fact, they were files that were compressed and had random numbers that matched the length of credit card numbers. I could easily ohave produced a report showing progress on their system if I could have eliminated the false positives. As it stands, the report still shows problems. The dashboard policy or the specific ...more »

MSP Risk Intelligence

Submitted by (@twistednetworx)

Layout the algorithm specifics for targeting PCI information

We need to know what the software is scanning for in order to be able to accurately tell if we're getting a false positive in the PCI Breach Report. For example, I got a false positive today in a report stating that service@paypal.com emailed me the full card number in an email. Obviously that didn't happen. Something in that email matched up enough to trigger the algorithm, but I don't know what the settings are or ...more »