PCI-DSS

PCI-DSS

Quick snapshot on the 12 requirements standard:

Configuring your Secure Network

1. Safeguard cardholder data by implementing/maintaining a firewall.
2. Do not use vendor-supplied defaults for system passwords and other security parameters.

Must Protect Cardholder Data

3. Encrypt cardholder data that is transmitted across public networks.
4. Protect stored cardholder data.

Manage up-to-date system Vulnerabilities

5. Use and regularly update programs, operating systems and anti-virus software.
6. Develop and maintain secure systems and applications.

Implement Secure Access Control Measures

7. Restrict access to cardholder data on a need-to-know basis.
8. Encrypt cardholder data that is transmitted across public networks.
9. Restrict physical access to cardholder data.

Test and Monitor Your Security

10. Track and monitor all access to network resources and cardholder data.
11. Perform frequent security testing of systems and processes.

Implement and Maintain Security Policies

12. Establish security policies that address information security procedures and processes.

For Compliance Assistance, Contact us: