SecureConnect Solution Simplifies Internal Vulnerability Scanning Making It Easier to Fulfill PCI Requirement 11.2

Often an overlooked component of the PCI DSS, internal vulnerability scanning among other enhanced services help customers meet security and compliance requirements.

Eden Prairie, MN, November 03, 2010 --( With the recent introduction of new packages, BHI SecureConnect has introduced internal vulnerability scanning to provide customers with an additional layer of protection.

Available as a component of the SecureConnect Elite package, internal vulnerability scanning assists in securing internal networks and complying with PCI requirement 11.2, by proactively identifying weaknesses within a company’s internal network environment. The majority of businesses, however, are more familiar with the need for external vulnerability scanning, failing to notice clear indication of the internal aspect.

Requirement 11.2 of the PCI DSS states, “Run internal and external network vulnerability scans at least quarterly and after any significant change in the network.”

Most business owners don’t consider that a devastating security breach could originate from their internal networks. Attackers can be anyone from disgruntled employees, internal thieves or external hackers that are able penetrate networks through an unsecure internal access point. By implementing internal vulnerability scanning as part of a vulnerability management program, companies can significantly reduce their risk of being compromised. If an attacker does manage to penetrate the network perimeter, proper internal security can contain the attack to avoid further penetration.

“Many companies tend to concentrate on the external scans, as they are a requirement for validation; Internal vulnerability assessment is of equal importance in securing an organization’s network,” said Blake Huebner, Director of Information Security at BHI SecureConnect. “PCI Requirement 11.2 mandates internal vulnerability scanning; this isn’t an optional component.”

Like all SecureConnect services, quarterly internal vulnerability scans are fully-managed by SecureConnect security experts. SecureConnect assesses each asset and identifies attack vectors. Once the in-scope environment has been scanned, SecureConnect evaluates those vulnerabilities, reduces false/positives and presents the results in a customized report. Accessed through the mySecureConnect portal, the report identifies vulnerabilities for each in-scope asset and includes steps for remediation. SecureConnect employees are on-hand to provide guidance in remediation.

“The combination of our internal and external scanning services without having to purchase or deploy an additional appliance sets us apart from the competition,” said Huebner.

As an Approved Scanning Vendor, BHI SecureConnect is one of a select group that can provide qualified scans in compliance with the PCI DSS.

“Customers choose SecureConnect because it offers a simplified approach to completing these necessary scans and achieving compliance in an affordable solution,” Huebner said.

To learn more about internal vulnerability scanning and SecureConnect, visit


About BHI Advanced Internet, Inc. provider of SecureConnect®: BHI Advanced Internet is a leading Managed Security Services Provider (MSSP), offering a wide-range of Internet security, managed network, and PCI compliance services to the multi-site retail industry. Named on the Inc. 5000 list as one of the country’s fastest growing companies and rated by the Star Tribune as one of the top 50 places to work in Minnesota, the company has experienced double digit revenue growth each of the past five years. SecureConnect®, BHI’s innovative flagship service, provides reliable, secure and PCI compliant networks at thousands of locations for leading retail brands across the U.S. and Canada.
BHI Advanced Internet, Inc. provider of SecureConnect
Kristyan Mjolsnes