Case Studies

PCI-DSS Compliance Network Segmentation Program

The Client

A NSW based credit union providing a range of deposit and lending financial products

The Objective

The client was on a multi year program to enhance its compliance to PCI-DSS standards. In order to lift its compliance to more than 80%, the client needed to segregate its ICT infrastructure in order to implement compliant access and controls on its CDE environments.

Centropy's Approach

Centropy consultants worked with the client to firstly identify the in-Scope sections of their IT environment. A target segmented network design was developed to isolate the DCE segments behind internal firewalls, thereby enabling the implementation of appropriate access and monitoring controls. Centropy consultants then managed the implementation to help the client achieve their target of 80% compliance.

What We Achieved

  1. Bringing together disparate expert skills to assess, design and implement the network segmentation
  2. Managed on time delivery of the complete set of initiatives to achieve compliance.
  3. Helped achieve target compliance

Relevance

# Cyber Security, # PCI DSS, # Technical Controls
ALL CASE STUDIES