Contact Us

Contact Us

Please get in touch using the form below

I prefer to be contacted by:
View our privacy policy
Learn how open source threat intelligence can be used to defend against cyber-attacks. Join our webinar on August 4th.

Overview

Regularly test security systems and processes in line with PCI DSS requirements

Regular assessment of systems and processes is among the key controls mandated by PCI DSS to protect cardholder data.

Requirement 11 of the standard outlines the need for organisations to perform internal and external penetration testing at least annually, or after any significant changes to infrastructure.

A range of security assessment services

Testing

What is a PCI DSS penetration test?

A penetration test is a type of cyber security assessment designed to identify, exploit and help address vulnerabilities.

PCI DSS penetration testing is designed to include assessment of network infrastructure and applications from both outside and inside an organisation’s network environment.

Scope

What needs to be assessed?

PCI DSS penetration testing must be performed on an organisation’s complete cardholder data environment (CDE) and includes any systems which may impact the security of the CDE.

A PCI pen test will help to identify:

  • Unsafe system and network configurations
  • Improper access controls
  • Rogue wireless networks
  • Coding vulnerabilities like XSS and SQL injection
  • Broken authentication and session management
  • Encryption flaws

Why Redscan?

Why choose Redscan for PCI DSS penetration testing?

Redscan is a CREST-accredited and award-winning provider of penetration testing services. Our ethical hacking engagements, including network penetration testing and web application testing, help organisations to achieve PCI DSS pen test standards by identifying weaknesses that could enable card payment details to be compromised by criminal attackers.

A Redscan employee shakes hands with a partner

More

More about PCI DSS compliance

For more information about PCI DSS compliance:

Get a quick quote

Complete the form for a prompt response from our team.

I prefer to be contacted by:
View our privacy policy

Resources

Discover our latest content and resources

From the blog
From the blog Case studies Latest news
13th July 2020
‘123456’ still the most popular online password

An analysis of over a billion breached credentials has revealed that one in every 142 people uses the password '123456', increasing their vulnerability to hackers.

7th July 2020
Significant rise in volume and size of fines for data breaches predicted
A new study has suggested that the number and value of fines for data breaches will increase dramatically between now and 2025. This is thought to be because employees have access to more data than ever before.
26th June 2020
One million phishing scams reported to NCSC in just two months
The UK’s National Cyber Security Centre (NCSC) has received one million reports of scam emails since launching its new reporting service in April. More than half of online scams reported were fake cryptocurrency investment lures.