It is undeniable that it is highly dangerous to use Microsoft Active Directory as a "Shared Service" and takes a lot of technical configuration and discipline to protect the environment with best practices.
Micro-segmentation allows merchants to isolate system / transactional components from the cardholder data environment, making it difficult for hackers to access credit card information.
Network segmentation is the act of dividing a computer network into subnetworks, each of which is a network segment that increases security and can also boost performance.
Network segmentation is the method of sectioning one network into smaller segments, or "subnetworks," in such a way that communication between them is limited or prevented.
This article provides guidance to help organizations identify the systems that need to be included in the PCI DSS scope at a minimum. In addition, it provides guidance on how to use segmentation to help reduce the number of systems that require PCI DSS control measures.
Want to stay up to date with the latest news?
We would love to hear from you! Please fill in your details and we will stay in touch. It's that simple!