Search results
Dec 8, 2020 · APPROVED: Vulnerability Scanning Requirement Exception Request (EXCEPT0000229) This exception rescinds the quarterly vulnerability scanning requirement for another six months while Information Security works to provide a process or solution to provide this service as required in the standard.
§ 59.1-443.3.Scanning information from driver's license or other document; retention, sale, or dissemination of information. A. No merchant may scan the machine-readable zone of a driver's license or other document issued by the Department of Motor Vehicles under Chapter 3 (§ 46.2-300 et seq.) of Title 46.2 or the comparable law of another jurisdiction, except for the following purposes:
Discover Technology Services. VITA offers a variety of IT services and products to Commonwealth and local governmental agencies and entities. The VITA service catalog contains descriptions, pricing, and service-specific ordering information for IT infrastructure, security and selected enterprise services to best serve Virginians.
Apr 1, 2022 · The vulnerability scanning requirement for all network connected managed devices to be scanned has been rescinded for another six months while Information Security works to release the new solution that offers this service as required in the standard.
includes the server, OS, network hardware layers. The partnership vulnerability scans do not include application layer vulnerability scanning. 4. What if the partnership manages my server? • Agency must still submit the web application vulnerability scan results to CSRM CommonwealthSecurity@vita.virginia.gov , server/OS scans are already sent to
Dec 8, 2020 · A new vulnerability project has been initiated to replace Tenable. This solution will provide the ability to scan and remediate vulnerabilities as per the policy. InfoSec is working on testing a new vendor, Qualys, but still needs this exception coverage until such time as the project is successful and can be rolled out.
Vulnerability scanning is the essential front end of any vulnerability management program. Today, vulnerability management is no longer a nice-to-have but rather a business-critical requirement for any organization running web applications or interactive websites.
