What are the Requirements of the PCI DSS for Vulnerability Scans? In order to know when the PCI Scan is required, we should know about the PCI DSS requirements first. The PCI DSS requires merchants to run both “Internal and External” vulnerability scans, in order to keep the credit card holder information system up to current security standards.
External Scans: External scans should be conducted from the outside of the organization and must include all the external IP addresses. These scans will help you to know about vulnerabilities in your security system that might be breached by the hackers to get hold of the sensitive credit card holder data.