Speak to an Expert Emergency

Demonstrate PCI DSS compliant network segmentation with Blackfoot’s PCI DSS Network Segmentation Testing service

  • Tailored test programmes
  • CREST certified
  • Expert penetration testers at your service
  • Innovative techniques to test your defences
  • Comprehensive range of testing services
  • Online penetration testing portal
  • Clear, concise reporting
Learn More

Why you need PCI DSS network segmentation testing

Meet compliance

Regular network segmentation testing is a fundamental part of meeting your organisation’s PCI DSS compliance goals

Protect the organisation

Regular network segmentation testing ensures that any weaknesses in network segmentation implementations are identified so they can be addressed, protecting against cyber-attack

Provide assurance

Regular network segmentation testing provides assurance to stakeholders that your networks meet PCI DSS compliance requirements

Blackfoot’s PCI DSS network segmentation testing service verifies the effectiveness of network segmentation of your cardholder data environments, no matter how complex they might be.

Our Accreditations

Crest logo
Crown Commercial Service Supplier logo
Cyber Essentials logo

What is PCI DSS network segmentation

Network segmentation testing is a PCI DSS requirement to ensure the correct deployment of segmentation controls protecting your cardholder data environment (CDE).

This testing evaluates the effectiveness of network segmentation controls to isolate sensitive cardholder data from other network segments.

This testing helps organisations demonstrate compliance with PCI DSS requirements, protect cardholder data and minimise the risk of unauthorised access or data breaches.

Proper segmentation testing enhances the overall security posture of your cardholder data environment, providing assurance that sensitive data is isolated and protected from potential security threats.

Our method

Blackfoot’s network segmentation testing is delivered by our highly skilled testers who will test the effectiveness of your segmentation controls following an approved, structured methodology.

A network segmentation test includes:

  • A thorough configuration review of devices involved in network segmentation. This includes examining rule sets, access control lists (ACLs), network address translation (NAT) settings and other device policies.
  • Comprehensive rule analysis to determine the necessity of device rulesets, their correctness and potential security implications.
  • Unnecessary or overly permissive rules may introduce vulnerabilities.
  • Policy consistency checks to identify conflicts within device rulesets. Inconsistent rules can lead to unexpected behaviour or security gaps.
  • An access control assessment evaluating the effectiveness of segmentation controls, ensuring that only authorised traffic is allowed and all unauthorised traffic is blocked between network segments.
  • Evaluation of security best practices to ensure configurations align with industry best practices and comply with the PCI DSS.

A comprehensive report is generated detailing the findings of the assessment, including identified weaknesses and misconfigurations, and provides recommendations for remediation.

The assessment report provides guidance on how to address the identified issues and improve the effectiveness of the network segmentation.

Why companies trust Blackfoot

  • Tailored test programmes
    Blackfoot’s expert consultants will create the perfect technical assurance programme to meet your needs.
  • CREST certified
    As a CREST-accredited supplier of penetration services, you can be assured that we deliver high-quality testing and vulnerability assessment services.
  • Expert penetration testers at your service
    At Blackfoot Cybersecurity, penetration testing has been the cornerstone of our business since its inception in 2009. Our seasoned CREST-certified testers bring a wealth of experience to the table, ensuring your cybersecurity testing is in capable hands.
  • Comprehensive range of testing services
    Blackfoot’s comprehensive range of services provide a complete solution to the find-and-fix challenge
  • Innovative techniques to test your defences
    Blackfoot’s team of experts leverage industry-leading techniques to identify vulnerabilities and weaknesses in your organisation.
  • Online penetration testing portal
    Blackfoot’s online testing portal provides instant control of your penetration testing programme. Plan and schedule tests, find and fix vulnerabilities, customise reports and dashboards, track and compare results. Our intuitive platform makes finding, fixing and managing vulnerabilities simple.
  • Clear, concise reporting
    Our transparent reporting presents findings in a clear manner, providing you with the insights needed to understand and address penetration testing results.

Speak to an Expert

Call us on +44 (0) 203 393 7795

Call Now

We value what our customers think of us

Blackfoot are authentic, hard-working, flexible and committed. Finding a partner who has our best interests at heart, one who tries to find solutions that work for us as a customer is like gold-dust. I now consider Blackfoot as part of my trusted partner network for any future projects.
CIOUK Challenger Bank
"As our business has expanded so quickly, we have had to learn and implement new policies, processes, controls internally and externally, upskill staff and manage 3rd parties differently, it’s been a heck of a learning curve. During the onboarding and kick off meetings the support exceeded what I was expecting. The support from Blackfoot was amazing."
I was very impressed with your project managers persistence and attention to detail. She clearly understood the technical side of the testing and was very patient and polite when chasing up due to slow / delayed responses on our side. Overall, the approach gave me confidence that the testing was being planned carefully and that Blackfoot were helping us get the best out of the plan.
Head of Information Security UK members association
"I’m pleased to have seen the account progress, I know your consultants have dedicated a lot of time to the project and I’m excited to report back to their transformation director in the new year around their latest level of data security and privacy maturity based on the investment they have made"
Programme Manager International retailer
“ I would like to add my thanks as in previous years you have really supported us and helped us to renew our certification and the entire process has been smooth and painless, we are most grateful."
IT Director International travel business

Get in touch

*Fill in the fields below





    Get the Latest Industry News

    We’ll keep you informed about potential risks and vulnerabilities that could impact your digital assets.