Contact Us

Contact Us

Please get in touch using the form below

1000 characters left
I prefer to be contacted by:
View our privacy policy
Book a penetration test today. Get in touch.

Overview

Regularly test security systems and processes in line with PCI DSS requirements

Regular assessment of systems and processes is among the key controls mandated by PCI DSS to protect cardholder data.

Requirement 11 of the standard outlines the need for organisations to perform internal and external penetration testing at least annually, or after any significant changes to infrastructure.

A range of security assessment services

Testing

What is a PCI DSS penetration test?

A penetration test is a type of cyber security assessment designed to identify, exploit and help address vulnerabilities.

PCI DSS penetration testing is designed to include assessment of network infrastructure and applications from both outside and inside an organisation’s network environment.

Scope

What needs to be assessed?

PCI DSS penetration testing must be performed on an organisation’s complete cardholder data environment (CDE) and includes any systems which may impact the security of the CDE.

A PCI pen test will help to identify:

  • Unsafe system and network configurations
  • Improper access controls
  • Rogue wireless networks
  • Coding vulnerabilities like XSS and SQL injection
  • Broken authentication and session management
  • Encryption flaws

Why Redscan?

Why choose Redscan for PCI DSS penetration testing?

Redscan is a CREST-accredited and award-winning provider of penetration testing services. Our ethical hacking engagements, including network penetration testing and web application testing, help organisations to achieve PCI DSS pen test standards by identifying weaknesses that could enable card payment details to be compromised by criminal attackers.

A Redscan employee shakes hands with a partner

Meet some of our team

Faisal
“Our remit is to think creatively to find solutions that will help keep your organisation more secure. We’re continually improving our knowledge of how adversaries think so that we can better identify security weaknesses and enhance detection of new and emerging threats.”
Faisal
Security Consultant
Philip Veness
“We aim to make sure that your organisation gets the best possible value from a pen test. We'll talk you through the assessment at every stage and answer any questions you might have along the way.”  

 

Philip
Security Consultant

More

More about PCI DSS compliance

For more information about PCI DSS compliance:

Get a Pen Test quote now

Keep your business safe by protecting your networks, systems and apps with our penetration testing services.

  • One of the highest accredited UK pentesting companies
  • A deep understanding of how hackers operate
  • In-depth threat analysis and advice you can trust
  • Complete post-test care for effective risk remediation
  • Multi award-winning offensive security services
  • Avg. >9/10 customer satisfaction, 95% retention rate

1000 characters left
I prefer to be contacted by:
View our privacy policy

Resources

Discover our latest content and resources

From the blog
From the blog Case studies Latest news
26th September 2022
Ransomware affiliates adopting data destruction
A new report suggests that ransomware affiliates are experimenting with new data destruction capabilities in order to evade detection, increase their chances of receiving payments and reduce the advancement of decryptor toolst.    
21st September 2022
Four-fifths of companies affected by critical cloud security incidents
New research has shown that around 80% of organizations experienced a severe cloud security incident over the past year.    
12th September 2022
More than three-quarters of retailers hit by ransomware in 2021
No less than 77% of retailers around the world were hit by ransomware in 2021, according to new research.  
5th September 2022
Supply chain risk a key security priority for organisations
A new survey has revealed that supply chain risk is now a key concern for organisations due to their increased reliance on cloud-based solutions.