Penetration Testing – PCI DSS compliance
Meet PCI DSS Requirements with Smarttech
The Payment Card Industry Security Standards Council requires that all companies, including third party service providers, that are involved in the transmission, processing or storage of credit and debit card data, must adhere to the PCI Data Security Standard on an ongoing basis and demonstrate compliance annually. Therefore, Penetration testing is a must for companies looking to meet and exceed PCI DSS requirements. Performed annually, penetration testing helps protect customer data and critical assets.
The goals of penetration testing are:
- To determine whether and how a malicious user can gain unauthorized access to assets that affect the fundamental security of the system, files, logs and/or cardholder data.
- To confirm that the applicable controls, such as scope, vulnerability management, methodology, and segmentation, required in PCI DSS are in place.