Speak to an Expert Emergency

Demonstrate PCI DSS compliant network segmentation with Blackfoot’s PCI DSS Network Segmentation Testing service

Why you need PCI DSS network segmentation testing

Meet compliance

Regular network segmentation testing is a fundamental part of meeting your organisation’s PCI DSS compliance goals

Protect the organisation

Regular network segmentation testing ensures that any weaknesses in network segmentation implementations are identified so they can be addressed, protecting against cyber-attack

Provide assurance

Regular network segmentation testing provides assurance to stakeholders that your networks meet PCI DSS compliance requirements

Blackfoot’s PCI DSS network segmentation testing service verifies the effectiveness of network segmentation of your cardholder data environments, no matter how complex they might be.

Our Accreditations

Crest logo
Crown Commercial Service Supplier logo
Cyber Essentials logo

What is PCI DSS network segmentation

Network segmentation testing is a PCI DSS requirement to ensure the correct deployment of segmentation controls protecting your cardholder data environment (CDE).

This testing evaluates the effectiveness of network segmentation controls to isolate sensitive cardholder data from other network segments.

This testing helps organisations demonstrate compliance with PCI DSS requirements, protect cardholder data and minimise the risk of unauthorised access or data breaches.

Proper segmentation testing enhances the overall security posture of your cardholder data environment, providing assurance that sensitive data is isolated and protected from potential security threats.

Our method

Blackfoot’s network segmentation testing is delivered by our highly skilled testers who will test the effectiveness of your segmentation controls following an approved, structured methodology.

A network segmentation test includes:

  • A thorough configuration review of devices involved in network segmentation. This includes examining rule sets, access control lists (ACLs), network address translation (NAT) settings and other device policies.
  • Comprehensive rule analysis to determine the necessity of device rulesets, their correctness and potential security implications.
  • Unnecessary or overly permissive rules may introduce vulnerabilities.
  • Policy consistency checks to identify conflicts within device rulesets. Inconsistent rules can lead to unexpected behaviour or security gaps.
  • An access control assessment evaluating the effectiveness of segmentation controls, ensuring that only authorised traffic is allowed and all unauthorised traffic is blocked between network segments.
  • Evaluation of security best practices to ensure configurations align with industry best practices and comply with the PCI DSS.

A comprehensive report is generated detailing the findings of the assessment, including identified weaknesses and misconfigurations, and provides recommendations for remediation.

The assessment report provides guidance on how to address the identified issues and improve the effectiveness of the network segmentation.

Why companies trust Blackfoot

Speak to an Expert

Call us on +44 (0) 203 393 7795

We value what our customers think of us

Get in touch

*Fill in the fields below

    Get the Latest Industry News

    We’ll keep you informed about potential risks and vulnerabilities that could impact your digital assets.