PCI DSS v3.2.1 Questions and Answers Forum


Build and Maintain a Secure Network and Systems Regularly Monitor and Test Networks Protect Stored Cardholder Data Maintain an Information Security Policy A strong security policy sets the security tone for the whole entity and informs personnel what is expected of them. All personnel should be aware of the sensitivity of data and their responsibilities for protecting it. For the purposes of Requirement 12, “personnel” refers to full-time and part-time employees, temporary employees, contractors and consultants who are “resident” on the entity’s site or otherwise have access to the cardholder data environment. Appendix B: Compensating Controls. Maintain a Vulnerability Management Program Implement Strong Access Control Measures To ensure critical data can only be accessed by authorized personnel, systems and processes must be in place to limit access based on need to know and according to job responsibilities. Appendix A: Additional PCI DSS Requirements This appendix contains additional PCI DSS requirements for different types of entities. The sections within this Appendix include: • Appendix A1: Additional PCI DSS Requirements for Shared Hosting Providers • Appendix A2: Additional PCI DSS Requirements for Entities using SSL/early TLS for Card-Present POS POI terminal connections • Appendix A3: Designated Entities Supplemental Validation
Topic Replies Views Activity
0 95 February 9, 2023
0 98 February 26, 2023
0 105 February 26, 2023
0 106 February 26, 2023
0 82 February 26, 2023
0 110 February 26, 2023
0 102 February 26, 2023
0 98 February 26, 2023
0 132 February 26, 2023
0 97 February 26, 2023
0 92 February 26, 2023
0 130 February 26, 2023
0 109 February 26, 2023
0 127 February 26, 2023
0 115 February 26, 2023
0 123 February 26, 2023
0 73 February 26, 2023
0 87 February 26, 2023
0 156 February 26, 2023
0 134 February 26, 2023
0 81 February 26, 2023
0 79 February 26, 2023
0 75 February 26, 2023
0 91 February 26, 2023
0 81 February 26, 2023
0 71 February 26, 2023
0 83 February 26, 2023
0 111 February 26, 2023
0 75 February 26, 2023
0 69 February 26, 2023