PCI-DSS
15
Nov
Posted by: CISS
Category:
PCI DSS, Uncategorized
PCI-DSS
Quick snapshot on the 12 requirements standard:
Configuring your Secure Network
- Safeguard cardholder data by implementing/maintaining a firewall.
- Do not use vendor-supplied defaults for system passwords and other security parameters.
Must Protect Cardholder Data
- Encrypt cardholder data that is transmitted across public networks.
- Protect stored cardholder data.
Manage up-to-date system Vulnerabilities
- Use and regularly update programs, operating systems and anti-virus software.
- Develop and maintain secure systems and applications.
Implement Secure Access Control Measures
- Restrict access to cardholder data on a need-to-know basis.
- Encrypt cardholder data that is transmitted across public networks.
- Restrict physical access to cardholder data.
Test and Monitor Your Security
- Track and monitor all access to network resources and cardholder data.
- Perform frequent security testing of systems and processes.
Implement and Maintain Security Policies
- Establish security policies that address information security procedures and processes.
For Compliance Assistance, Contact us: