Logical Security Audits
We are able to offer our clients a wide range of professional security services ranging from payment scheme audits, 27001, risk assessments and the new MasterCard ‘over-the-air’ provisioning audits. In addition to this range of audit services Meridian will now be able to offer PCI DSS compliance services.
Scope of the Audit
The scope of the ‘MasterCard Logical Security Audit’ includes:
Whilst Meridian can conduct logical security audits for such payment schemes
as MasterCard.
Our audit team are also able to provide independent auditing services for
clients away from any scheme or standard, for example as a pre-audit compliance
audit or a standalone review for a company.
Example of the scope of the MasterCard logical security audit
MasterCard International requires that a logical security audit is conducted
at any site which wishes to personalise cards, the logical Security inspection
will include:
- Logical Security
- Roles and Responsibilities
- Security Management System
- IT Software and Hardware Security
- Risk Management and Incident Reporting
- Data access Authorisation and Maintenance
- Network Security
- Data Security
- Key Management
MasterCard Annual Renewal Audit
MasterCard International requires that an annual renewal audit of each
card facility takes place, on or around the anniversary of the initial
audit.
Meridian Services is able to provide this annual service. The renewal audit
schedule will be fully managed by the Meridian Services ‘Back Office
team’ and a timely reminder will be sent to the management to ensure
that the audit is arranged in good time to ensure the option of continued
accreditation by MasterCard.
Additional Information for consideration
MasterCard International changed its rules in April 2007 so that should a facility wish to personalise cards then they would be required to conduct a “Combined Security Audit” (a Logical and Physical security audit during the same visit) in order to be considered for certification.
