PCI Penetration Testing

PCI Penetration

Penetration tests are intended to identify weaknesses in the architecture of your IT network and are essential to determine the degree to which an attacker could gain access to your company’s assets. Vulnerability scans look for known vulnerabilities in your systems and may report potential exposures.

Finance-specific pentesting, to protect your transactional data

The goal of Drummond’s PCI Penetration Testing practice is to determine whether and how an attacker could gain unauthorized access to assets that affect the fundamental security of the system, files, logs and/or cardholder data, and confirm that the applicable controls required by PCI DSS – scope, vulnerability management, methodology and segmentation – are in place.

There are three types of penetration tests: black-box, white-box, and grey-box:

Case Studies

Why choose Drummond?


There is a lot at stake.  Our staff has deep experience in certification;  we’re not cutting our teeth on your project.  When you work with Drummond, you experience a team of highly skilled professionals that bring a code of honesty, empathy, and advocacy to each engagement.  Our team will help you achieve compliance and certification and look for ways to help you pursue comprehensive compliance in the service of the greater good for your business.


We focus on quality from every angle.  In many cases, our staff are the people who created the frameworks everyone else tests to.  We bring an exclusive and proven methodology to each engagement and look for ways to improve and be more efficient at every step of the project.  We take ownership and accountability of our work as we help you mitigate risk and achieve positive outcomes.


Ask any of our clients, they will tell you that the Drummond difference is its people.  The people of Drummond listen carefully, and tailor solutions to your unique business and situation.  Experience our team of highly skilled experts and proven methodologies and unique approach to help you achieve compliance for regulatory information security mandates.  Our team will help you test critical applications for standards conformance and interoperability and gain certifications for your long-term success.  Increase trust, gain expertise and experience our unique approach and attention to detail as we partner with you for your long-term success.


Reduce your Risk today

Get a quote or more information about our
penetration test solutions and services

Download Drummond's Guide to Integration Review of E-Prescription Module

Please fill out the form below to download the guide.

Drummond's guide to EPCS Recertification

Please fill out the form below to download the guide.

Drummond's guide to Initial EPCS Certification

Please fill out the form below to download the guide.