Implement Strong Access Control Measures (Requirem

Topic	Views	Activity
About the Implement Strong Access Control Measures (Requirem category	43	January 23, 2023
[PCI DSS 3.0] 9.10 Ensure that security policies and operational procedures for restricting physical access to car requirement-9:-restr	2403	September 23, 2014
[PCI DSS 3.0] 9.9.3 Provide training for personnel to be aware of attempted tampering or replacement of devices. T requirement-9:-restr	2560	September 23, 2014
[PCI DSS 3.0] 9.9.2 Periodically inspect device surfaces to detect tampering (for example, addition of card skimme requirement-9:-restr	2473	September 23, 2014
[PCI DSS 3.0] 9.9.1 Maintain an up-to-date list of devices. The list should include the following: requirement-9:-restr	2028	September 23, 2014
[PCI DSS 3.0] 9.9 Protect devices that capture payment card data via direct physical interaction with the card fro requirement-9:-restr	2032	September 23, 2014
[PCI DSS 3.0] 9.8.2 Render cardholder data on electronic media unrecoverable so that cardholder data cannot be rec requirement-9:-restr	2240	September 23, 2014
[PCI DSS 3.0] 9.8.1 Shred, incinerate, or pulp hard- copy materials so that cardholder data cannot be reconstructe requirement-9:-restr	2471	September 23, 2014
[PCI DSS 3.0] 9.8 Destroy media when it is no longer needed for business or legal reasons as follows: requirement-9:-restr	1922	September 23, 2014
[PCI DSS 3.0] 9.7.1 Properly maintain inventory logs of all media and conduct media inventories at least annually. requirement-9:-restr	2885	September 23, 2014
[PCI DSS 3.0] 9.7 Maintain strict control over the storage and accessibility of media. requirement-9:-restr	1843	September 23, 2014
[PCI DSS 3.0] 9.6.3 Ensure management approves any and all media that is moved from a secured area (including when requirement-9:-restr	1812	September 23, 2014
[PCI DSS 3.0] 9.6.2 Send the media by secured courier or other delivery method that can be accurately tracked. requirement-9:-restr	2279	September 23, 2014
[PCI DSS 3.0] 9.6.1 Classify media so the sensitivity of the data can be determined. requirement-9:-restr	3175	September 23, 2014
[PCI DSS 3.0] 9.6 Maintain strict control over the internal or external distribution of any kind of media, includi requirement-9:-restr	2201	September 23, 2014
[PCI DSS 3.0] 9.5.1 Store media backups in a secure location, preferably an off-site facility, such as an alternat requirement-9:-restr	2302	September 23, 2014
[PCI DSS 3.0] 9.5 Physically secure all media. requirement-9:-restr	2617	September 23, 2014
[PCI DSS 3.0] 9.4.4 A visitor log is used to maintain a physical audit trail of visitor activity to the facility a requirement-9:-restr	2735	September 23, 2014
[PCI DSS 3.0] 9.4.3 Visitors are asked to surrender the badge or identification before leaving the facility or at requirement-9:-restr	1664	September 23, 2014
[PCI DSS 3.0] 9.4.2 Visitors are identified and given a badge or other identification that expires and that visibl requirement-9:-restr	1870	September 23, 2014
[PCI DSS 3.0] 9.4.1 Visitors are authorized before entering, and escorted at all times within, areas where cardhol requirement-9:-restr	2046	September 23, 2014
[PCI DSS 3.0] 9.4 Implement procedures to identify and authorize visitors. requirement-9:-restr	1731	September 23, 2014
[PCI DSS 3.0] 9.3 Control physical access for onsite personnel to the sensitive areas as follows: requirement-9:-restr	2305	September 23, 2014
[PCI DSS 3.0] 9.2 Develop procedures to easily distinguish between onsite personnel and visitors, to include: requirement-9:-restr	2425	September 23, 2014
[PCI DSS 3.0] 9.1.3 Restrict physical access to wireless access points, gateways, handheld devices, networking/com requirement-9:-restr	1884	September 23, 2014
[PCI DSS 3.0] 9.1.2 Implement physical and/or logical controls to restrict access to publicly accessible network j requirement-9:-restr	2326	September 23, 2014
[PCI DSS 3.0] 9.1.1 Use video cameras and/or access control mechanisms to monitor individual physical access to se requirement-9:-restr	4144	September 23, 2014
[PCI DSS 3.0] 9.1 Use appropriate facility entry controls to limit and monitor physical access to systems in the c requirement-9:-restr	2053	September 23, 2014
[PCI DSS 3.0] 8.8 Ensure that security policies and operational procedures for identification and authentication a requirement-8:-ident	2196	September 23, 2014
[PCI DSS 3.0] 8.7 All access to any database containing cardholder data (including access by applications, adminis requirement-8:-ident	5235	September 23, 2014