Case Study: iCard achieves rapid, prioritized vulnerability management with Qualys Cloud Platform

iCard Prioritizes Vulnerability Management with Fast, Lightweight Solution

iCard is a Sofia‑based fintech that provides e‑banking, e‑wallets, virtual and physical card services across Europe and employs around 500 people. Because roughly 90–95% of its business is online, the company needed a more effective, holistic way to identify and prioritise software vulnerabilities and support PCI‑DSS compliance after free tools proved unreliable and time‑consuming.

iCard implemented the Qualys Cloud Platform (Qualys VM, Cloud Agents and PCI Compliance) to get fast, lightweight, near‑real‑time visibility across workstations, servers and web services. The cloud agents enabled automated scans and consolidated reporting for both technical teams and executives, reduced scan times (recent scans completed in 1h40m), covered ~500 IPs including ATMs, and cut administration overhead—allowing iCard to prioritise fixes, improve patch management and strengthen its overall security posture.

iCard

Todor Kunev

CISO