A new alliance dedicated to providing you with the best experience in PCI DSS services

DrivePCI is a new strategic alliance between Indusface and Dragonfly to offer a global community based approach to PCI DSS and PCI ASV services.

The alliance will drive PCI collaboration in the Asia-Pacific region to help organisations identify PCI DSS gaps, remediation planning and remediation services.

Through the DrivePCI alliance, businesses can subscribe to continuous PCI ASV scanning and penetration testing services backed by leading and Gartner recognised cybersecurity firms.

Spotlight: How to Choose a PCI Approved Scanning Vendor

In order to comply with the Payment Card Industry Data Security Standard (PCI DSS), merchants and service providers are required to have external vulnerability scans performed on their systems every quarter. These scans must be performed by an Approved Scanning Vendor (ASV). But what is an Approved Scanning Vendor, and how do you go about choosing one? In this article, we answer these questions to help you get the most out of your PCI DSS scans. 

Requirement 11: Regularly test security systems and processes

PCI DSS Requirement 11.2

Run internal and external network vulnerability scans at least quarterly and after any significant change in the network (such as new system component installations, changes in network topology, firewall rule modifications, product upgrades). 


There are three types of vulnerability scanning required for PCI DSS:

  • Internal quarterly vulnerability scanning by qualified personnel (use of a PCI SSC Approved Scanning Vendor (ASV) is not required)

  • External quarterly vulnerability scanning, which must be performed by an ASV

  • Internal and external scanning as needed after significant changes 

Finding an approved PCI ASV

Indusface is an Approved Scanning Vendor (ASV) for PCI Security Standards Council and a dedicated DrivePCI alliance member. DrivePCI alliance members are dedicated and committed to helping organisations improve their security posture to meet and maintain compliance.  


If you would like to become a part of the drive towards better compliance and help your customers experience the PCI difference please contact us. At DrivePCI our mission is to create a global community of PCI DSS professionals and whether you are a large multi-national or a PCI DSS professional we'd like to here from you! 

Contact DrivePCI today!


Indusface, Dragonfly Announce Strategic Partnership to Drive PCI DSS Compliance

DrivePCI is a new strategic alliance between Indusface and Dragonfly to offer a global community based approach to PCI DSS and PCI ASV services.