Category: ASV - Authorized Scanning Vendors
A Payment Card Industry (PCI) Approved Scanning Vendor (ASV) is an organization that offers security services and tools against PCI DSS Requirement 11.2.2 under PCI DSS 3.2.1 and 11.3.2 under PCI DSS 4.0. Specifically, this relates to external vulnerability scans of the entity complying with PCI DSS.
All approved ASVs have met all PCI Security Standards Council (SSC) requirements to perform PCI data security scanning although the PCI SSC does not endorse these security solution providers or their business processes or practices.
The approved ASVs are listed on the PCI SSC website and the list of organizations contained in the directory below have at one time been approved as ASVs. Entities wishing to procure services of an ASV listed on the directory should ensure they obtain the validation that the ASV is currently in good standing.