Practice Resilience

Protecting Your System

Testing Your System

The PCI DSS applies to all organisations that store, process or transmit cardholder data. You must also ensure all associated suppliers and vendors that have access to your cardholder data are also PCI DSS compliant.

JurisIT can assist you in determining your requirements.

Our security experts have decades of experience in IT systems and securing computing environments.

For your organisation to be PCI DSS compliant you must meet the following requirements 

  • Install and maintain a firewall to protect cardholder data
  • Do not use default passwords and other security settings
  • Protect stored cardholder data
  • Encrypt transmission of cardholder data
  • Protect all systems against viruses and malware
  • Develop and maintain secure systems and applications

  • Internal restrictions on access to cardholder data
  • Identify and authenticate access to all systems
  • Restrict physical access to cardholder data
  • Monitor all access to resources and cardholder data
  • Regularly test security systems and processes
  • Maintain a information security policy

Our security experts can assist you with the becoming compliant and remaining so.

Becoming Compliant

  • Identify the scope of your PCI requirements
  • Assist with completion of PCI questionairre
  • Perform a PCI gap analysis and report
  • Design a compliance plan
  • Implement the compliance plan
Remaining Compliant

  • Testing of access points
  • Internal network vulnerability scans
  • External network vulnerability scans
  • Web application vulnerability tests
  • Penetration testing

For further information you can visit the PCI Security Standards Council.

Contact JurisIT now on 02 9252 5775
to secure your firm.