Fortra PCI Service

Schedule quarterly external scans required for Payment Card Industry (PCI) compliance within Fortra VM. Scan results and reports can be scheduled and reviewed in the platform, and a Fortra PCI analyst will work with you, to validate compliance to auditors and resolve necessary vulnerabilities.

TIP: Required PCI compliance documents are available from the PCI Security Standards Council (PCI SSC), including the Payment Card Industry Data Security Standard (DSS) and the ASV Program Guide.

PCI Scanning

The following is the recommended process for maintaining PCI compliance through Fortra vulnerability management.

Schedule a PCI Scan.

Two workflow options:
1. Scan Groups (recommended)
2. Multi-Scan
Review scan results for potential compliance issues. The PCI progress bars in the scan overview provides a high-level summary of items needing attention.
If compliance is not reflected in your PCI scan results:
1. Resolve PCI relevant vulnerabilities.
2. Submit a PCI Dispute for any vulnerabilities you believe inaccurately reflect your PCI status, by working with your Fortra PCI Analyst.
Once all vulnerabilities have been addressed re-run your PCI Scan.
Requisition a PCI Report and submit PCI compliance documentation.

Copyright © Fortra, LLC and its group of companies.
All trademarks and registered trademarks are the property of their respective owners.
202512170522 | December 2025