How to resolve Sprinto check for uploading the VAPT report

About

Sprinto check: Periodic VAPT report needs to be uploaded

This check serves as a reminder to upload the Vulnerability Assessment & Penetration Testing (VAPT) report on Sprinto. Uploading the VAPT report is a periodic action and requires uploading the recently performed VAPT report each time as evidence.

Purpose

This check ensures regular Pentests are performed on the IT systems to detect any vulnerabilities and enhance security. You need to add the detected vulnerabilities on your Sprinto account if the VAPT report finds any. Sprinto tracks the vulnerability's status until it is resolved from the detected source. Uploaded VAPT reports and tracking the detected vulnerabilities is crucial to meeting the security complaint requirements.

How to resolve

To resolve this check:

1. Perform the Pentest from a certified service provider and upload the VAPT report on your Sprinto account.

2. If the report reveals any existing vulnerabilities, add them to your Sprinto account in open status.

3. Resolve these vulnerabilities from the identified sources and update the vulnerability status on Sprinto. Resolve the vulnerabilities within the defined SLA.

For detailed instructions, refer to how to upload the pentest report.

If you need any assistance with Sprinto check, please contact Sprinto Support.