Join us as we share the challenges we see every day related to network segmentation. What should and could be a standard definition across all audits seems to be a consistent point of confusion based on interpretation and background of each auditor we work with. This session will include a discussion around proper segmentation testing, implementation of gateways to help limit the risk from 3rd parties and support technicians, and how to define in-scope and connected to devices. We will also walk through why proper segmentation is critical to protecting sensitive data through sharing stories from our penetration testing team on how to exploit and bypass common segmentation technology as well as multi-factor authentication systems to gain access to cardholder data environments.