Logical Security Audits

We are able to offer our clients a wide range of professional security services ranging from payment scheme audits, 27001, risk assessments and the new MasterCard ‘over-the-air’ provisioning audits. In addition to this range of audit services Meridian will now be able to offer PCI DSS compliance services.

Scope of the Audit

The scope of the ‘MasterCard Logical Security Audit’ includes:

Whilst Meridian can conduct logical security audits for such payment schemes as MasterCard.
Our audit team are also able to provide independent auditing services for clients away from any scheme or standard, for example as a pre-audit compliance audit or a standalone review for a company.

Example of the scope of the MasterCard logical security audit

MasterCard International requires that a logical security audit is conducted at any site which wishes to personalise cards, the logical Security inspection will include:

• Logical Security
• Roles and Responsibilities
• Security Management System
• IT Software and Hardware Security
• Risk Management and Incident Reporting
• Data access Authorisation and Maintenance
• Network Security
• Data Security
• Key Management

MasterCard Annual Renewal Audit

MasterCard International requires that an annual renewal audit of each card facility takes place, on or around the anniversary of the initial audit.

Meridian Services is able to provide this annual service. The renewal audit schedule will be fully managed by the Meridian Services ‘Back Office team’ and a timely reminder will be sent to the management to ensure that the audit is arranged in good time to ensure the option of continued accreditation by MasterCard.

Additional Information for consideration

MasterCard International changed its rules in April 2007 so that should a facility wish to personalise cards then they would be required to conduct a “Combined Security Audit” (a Logical and Physical security audit during the same visit) in order to be considered for certification.