[PA-DSS] 5.1 Develop all payment applications based on industry best practices and incorporate infor

5.1 Develop all payment applications based on industry best practices and incorporate information security throughout the software development life cycle.

PCI Data Security Standard Requirement 6.3

Testing Procedures:

5.1 Obtain and examine written software development processes to verify that they are based on industry standards and that security is included throughout the life cycle.

From an examination of written software development processes, interviews of software developers, and examination of relevant data (network configuration documentation, production and test data, etc.), verify that: