Text size Increase Font-SizeDecrease Font-SizeReset Font-Size

Approved Scanning Vendors (ASVs) are organizations that validate adherence to certain DSS requirements by performing vulnerability scans of Internet facing environments of merchants and service providers.

Please note, the PCI Security Standards Council maintains a structured process for security solution providers to become Approved Scanning Vendors (ASVs), as well as to be re-approved each year.

Approval and re-approval indicate only that the applicable ASV has successfully met all PCI Security Standards Council requirements to perform PCI data security scanning, and the PCI Security Standards Council does not endorse these security solution providers or their business processes or practices.

Although the PCI Security Standards Council strives to ensure that the list of Approved Scanning Vendors linked to this page is current, the list is updated frequently and the PCI Security Standards Council cannot guarantee that the list is current at all times. Accordingly, each time a client engages an ASV, the client is advised to check this list on a regular basis to ensure that its ASV has successfully maintained its status as an Approved Scanning Vendor.

Search by Company Name, Product Name, Place of Business and Locations served.
Results: 111
Page: 1 2 3 4 5 6

Company Place
of Business
Product Name Email Contact Locations Served Certificate
Number
Qualified
ASV Employees
Informzaschita Russia PCI Compliance Scan
pcidss@infosec.ru
Worldwide 4159-01-09
Internet Security Auditors Spain PCIDSS Scan Services
pcidss@isecauditors.com
Global 4229-01-08
Internet Security Systems a wholly owned IBM Company
**In Remediation**
United States IBM Security Services - Consultant-led ASV scan
wegonzal@us.ibm.com
Global 3790-01-09
Internet Security Systems a wholly owned IBM Company
**In Remediation**
United States IBM Security Services - Hosted Vulnerability Management
wegonzal@us.ibm.com
Global 5022-01-05
IT Works Luxembourg PCI DSS ASV 2014 - 2
diammarino@itworks.lu
Europe 3870-01-09
Jet Infosystems Russia Jet Infosystems ASV
pci-dss@jet.su
Armenia, Azerbaijan, Belarus, Georgia,Kazakhstan, Kirgizia,Moldavia, Russia, Tajikistan, Ukraine 4276-01-07
Kima Projects & Services Italy ICT Security Assessment Services (ISAS)
isas-pci@kimaps.com
Italy / Europe 3934-01-09
LE Global Services Sdn. Bhd.
**In Remediation**
Malaysia LGMS PCI Scan
asv@le-global.com
USA, UK, Europe, Middle East, Asia Pacific, Australia, Malaysia, Global, Taiwan, Switzerland, China, Russia, Scandinavia, New Zealand, Japan, Africa, Canada 5040-01-04
Masergy Communications, Inc. United States PCI Compliance Professional Services 2015
pci@masergy.com
Global 3841-01-10
McGladrey LLP United States PCI ASV Solution
greg.schu@rsmi.com
Global 3788-01-08
Megaplanit, LLC United States MegaplanIT ASV Service
DominickV@megaplanit.com
Worldwide 5067-01-01
Merchant Preservation Services, LLC d/b/a CampusGuard
**In Remediation**
United States MerchantGuard
rking@campusguard.com
USA, Australia, New Zealand 5016-01-05
Mnemonic Norway mnemonic PCI scan
pci@mnemonic.no
Europe, Norway, Sweden and Denmark 3891-01-09
Moss Adams LLP United States PCI ASV 2014 Requal
Francis.tam@mossadams.com
North America, USA 5054-01-03
MWR Infosecurity United Kingdom Managed Scanning Services
pci@mwrinfosecurity.com
Global 3961-01-09
NCC Group PLC United Kingdom NCC Group - Managed Security Services - PCI ASV
asv.support@nccgroup.com
Global 3928-01-09
NCI Secured Intelligence Canada NCI ASV Requalification - 2014
pci-info@nci.ca
Canada 4248-01-08
Netcraft Ltd United Kingdom Audited By Netcraft
security@netcraft.com
Global 3902-01-10
Nettitude Ltd. United Kingdom Nettitude ASV Scanning Solution (2015)
pentesting@nettitude.com
Global 4251-01-08
Nexusguard Consulting Limited Hong Kong and Macau ClearScan
PCI_ADM@nexusguard.com
Global, Asia Pacific, Hong Kong, Macau, Taiwan, China, Indonesia, Malaysia, Philippines, Singapore, Thailand 5055-01-02
 
Results: 111
Page: 1 2 3 4 5 6
* 'In Remediation' status indicates a determination by the Council, after an Approved Scanning Vendor organization has violated applicable ASV Qualification Requirements. This status may result from failure to comply with any number of applicable ASV Qualification Requirements. ASVs are notified when remediation is required, and ASVs listed as "In Remediation" may be actively seeking to remedy this status. For more about remediation please review the Remediation section of the Qualification Requirements for Approved Scanning Vendors.

For information about the status of a particular ASV, please contact that ASV.

Back to Top

The PCI Security Standards Council (the "Council") provides a variety of tools, questionnaires, guidance, FAQs, training resources and other materials and information to assist organizations seeking to achieve compliance with its standards (the "Standards"). Third party products and services are also available, but the Council does not endorse or recommend any such third party products or services, and advises all organizations seeking to achieve compliance to become familiar with the Standards and related requirements before purchasing third party products or services. Ultimately, all applicable requirements must be met in order to achieve compliance, regardless of whether or what third party products or services are used.