Compass IT Compliance Vulnerability Management Services is a suite of security assessment and scanning services delivered by certified security professionals. The offering is designed to identify and manage vulnerabilities across an organization's people, processes, and technology. Services included: - Vulnerability Assessments: Identification and evaluation of security weaknesses across systems and infrastructure. - Web Application Scanning: Automated and/or manual scanning of web applications for security vulnerabilities. - Firewall Security Review: Analysis of firewall configurations and rule sets for security gaps. - API Scanning: Security scanning of APIs for vulnerabilities and misconfigurations. - Microsoft 365 Security Assessments: Evaluation of security posture within Microsoft 365 environments. - Endpoint Detection and Response (EDR): Monitoring and response capabilities for endpoint threats. - Wireless Network Assessments: Evaluation of wireless network security. The service follows industry-recognized methodologies and frameworks, including NIST practices and the Open Source Security Testing Methodology Manual (OSSTMM). Reports are provided to give insight into vulnerabilities that could be exploited by real-world attackers. The service is applicable across multiple industries including retail, manufacturing, nonprofit, hospitality, financial services, and technology. It also supports compliance with standards such as PCI DSS, which mandates regular vulnerability assessments.