Implement Strong Access Control Measures (Requirem

Topic	Views	Activity
About the Implement Strong Access Control Measures (Requirem category	9	January 23, 2023
[PCI DSS 3.0] 9.10 Ensure that security policies and operational procedures for restricting physical access to car requirement-9:-restr	2371	September 23, 2014
[PCI DSS 3.0] 9.9.3 Provide training for personnel to be aware of attempted tampering or replacement of devices. T requirement-9:-restr	2528	September 23, 2014
[PCI DSS 3.0] 9.9.2 Periodically inspect device surfaces to detect tampering (for example, addition of card skimme requirement-9:-restr	2447	September 23, 2014
[PCI DSS 3.0] 9.9.1 Maintain an up-to-date list of devices. The list should include the following: requirement-9:-restr	2010	September 23, 2014
[PCI DSS 3.0] 9.9 Protect devices that capture payment card data via direct physical interaction with the card fro requirement-9:-restr	2004	September 23, 2014
[PCI DSS 3.0] 9.8.2 Render cardholder data on electronic media unrecoverable so that cardholder data cannot be rec requirement-9:-restr	2212	September 23, 2014
[PCI DSS 3.0] 9.8.1 Shred, incinerate, or pulp hard- copy materials so that cardholder data cannot be reconstructe requirement-9:-restr	2436	September 23, 2014
[PCI DSS 3.0] 9.8 Destroy media when it is no longer needed for business or legal reasons as follows: requirement-9:-restr	1883	September 23, 2014
[PCI DSS 3.0] 9.7.1 Properly maintain inventory logs of all media and conduct media inventories at least annually. requirement-9:-restr	2826	September 23, 2014
[PCI DSS 3.0] 9.7 Maintain strict control over the storage and accessibility of media. requirement-9:-restr	1823	September 23, 2014
[PCI DSS 3.0] 9.6.3 Ensure management approves any and all media that is moved from a secured area (including when requirement-9:-restr	1791	September 23, 2014
[PCI DSS 3.0] 9.6.2 Send the media by secured courier or other delivery method that can be accurately tracked. requirement-9:-restr	2260	September 23, 2014
[PCI DSS 3.0] 9.6.1 Classify media so the sensitivity of the data can be determined. requirement-9:-restr	3147	September 23, 2014
[PCI DSS 3.0] 9.6 Maintain strict control over the internal or external distribution of any kind of media, includi requirement-9:-restr	2174	September 23, 2014
[PCI DSS 3.0] 9.5.1 Store media backups in a secure location, preferably an off-site facility, such as an alternat requirement-9:-restr	2264	September 23, 2014
[PCI DSS 3.0] 9.5 Physically secure all media. requirement-9:-restr	2595	September 23, 2014
[PCI DSS 3.0] 9.4.4 A visitor log is used to maintain a physical audit trail of visitor activity to the facility a requirement-9:-restr	2709	September 23, 2014
[PCI DSS 3.0] 9.4.3 Visitors are asked to surrender the badge or identification before leaving the facility or at requirement-9:-restr	1612	September 23, 2014
[PCI DSS 3.0] 9.4.2 Visitors are identified and given a badge or other identification that expires and that visibl requirement-9:-restr	1829	September 23, 2014
[PCI DSS 3.0] 9.4.1 Visitors are authorized before entering, and escorted at all times within, areas where cardhol requirement-9:-restr	2030	September 23, 2014
[PCI DSS 3.0] 9.4 Implement procedures to identify and authorize visitors. requirement-9:-restr	1708	September 23, 2014
[PCI DSS 3.0] 9.3 Control physical access for onsite personnel to the sensitive areas as follows: requirement-9:-restr	2285	September 23, 2014
[PCI DSS 3.0] 9.2 Develop procedures to easily distinguish between onsite personnel and visitors, to include: requirement-9:-restr	2398	September 23, 2014
[PCI DSS 3.0] 9.1.3 Restrict physical access to wireless access points, gateways, handheld devices, networking/com requirement-9:-restr	1859	September 23, 2014
[PCI DSS 3.0] 9.1.2 Implement physical and/or logical controls to restrict access to publicly accessible network j requirement-9:-restr	2295	September 23, 2014
[PCI DSS 3.0] 9.1.1 Use video cameras and/or access control mechanisms to monitor individual physical access to se requirement-9:-restr	4108	September 23, 2014
[PCI DSS 3.0] 9.1 Use appropriate facility entry controls to limit and monitor physical access to systems in the c requirement-9:-restr	2015	September 23, 2014
[PCI DSS 3.0] 8.8 Ensure that security policies and operational procedures for identification and authentication a requirement-8:-ident	2168	September 23, 2014
[PCI DSS 3.0] 8.7 All access to any database containing cardholder data (including access by applications, adminis requirement-8:-ident	5182	September 23, 2014