12.7. Vulnerability Scanning & Remediation Services

Why Microsoft Updates Are Not Enough


Microsoft Updates are essential for patching Windows operating systems, but they only address Microsoft-supplied fixes. They do not detect risks such as misconfigurations, third-party application vulnerabilities, or other CVE exposures outside that scope.


Comprehensive Scanning with Tenable Nessus & Xcitium


Tenable Nessus Scans


  • Industry-leading vulnerability scanner with access to over 89,000 CVEs across operating systems, software, and network services
  • Supports agentless and authenticated (credentialed) scans, improving accuracy and reducing false positives.
  • Includes configuration audit checks and compliance templates (e.g., CIS, NIST, PCI).
  • Provides risk-based prioritization via Tenable’s Vulnerability Priority Rating (VPR).
  • Consistently rated higher than Microsoft Defender Vulnerability Management in user reviews and peer evaluations.

Xcitium Vulnerability & Perimeter Scans


  • Xcitium performs perimeter vulnerability assessments, scanning externally facing assets for known exposures
  • Xcitium is an Approved Scanning Vendor (ASV), capable of PCI DSS and network vulnerability scanning with centralized dashboards.
  • Scans are backed by modern ethical-hacking techniques and produce expert remediation guidance.

Our Service Offering


We provide a complete vulnerability scanning and remediation service. We don’t just detect issues—we fix them, working directly with your IT team or standalone to apply patches, adjust configurations, and close identified holes.


Standard Scan Package Includes:


  • Quarterly Tenable Nessus scan for each machine: full credentialed scan + configuration audit.
  • External Xcitium vulnerability assessment for perimeter devices and internet-facing endpoints.
  • Full remediation support – we deliver actionable reports and take care of patching and remediation tasks.

Pricing


ServiceFrequencyPrice
Tenable Nessus + Xcitium External Vulnerability Scan + Remediation WorksQuarterly$100 per VM

How This Helps You


  • Broader coverage: identifies issues beyond OS patches—including third-party software, misconfigurations, and exploitable CVEs.
  • Risk-based approach: focus on high-impact risks first via prioritization tools like Tenable’s VPR.
  • Compliance-ready: audits against standards such as PCI-DSS, CIS, and NIST using built-in reporting tools.
  • Proactive and continuous: quarterly scanning ensures you track improvements and emerging threats.
  • We handle remediation: our team or your admins can eliminate findings—we’ll guide and assist.

Why Choose Us


  • Proven scanning tools: Tenable Nessus is globally trusted and ranked #1 in vulnerability management.
  • Compliance-ready scanning: Xcitium is an ASV and leader in network vulnerability assessments.
  • Full lifecycle support: from discovery to remediation, we manage the details.
  • Transparent pricing: fixed cost per VM for planning and budgeting ease.

Get Started

Interested in reducing your cyber risk and strengthening your IT posture? Contact us to schedule your first quarterly scan or request a full proposal.

Need more help with this?
© 2021–2025 XSTRA Group Pty Ltd (Australia). All rights reserved.

Thanks for your feedback.