Topics tagged requirement-11:-regu

Topic	Replies	Views	Activity
[PCI DSS 3.0] 11.3.1 Perform external penetration testing at least annually and after any significant infrastructu Regularly Monitor and Test Networks (Requirements requirement-11:-regu	1	3354	October 5, 2015
[PCI DSS 3.0] 11.6 Ensure that security policies and operational procedures for security monitoring and testing ar Regularly Monitor and Test Networks (Requirements requirement-11:-regu	0	2034	September 23, 2014
[PCI DSS 3.0] 11.5.1 Implement a process to respond to any alerts generated by the change- detection solution. Regularly Monitor and Test Networks (Requirements requirement-11:-regu	0	1982	September 23, 2014
[PCI DSS 3.0] 11.5 Deploy a change-detection mechanism (for example, file-integrity monitoring tools) to alert per Regularly Monitor and Test Networks (Requirements requirement-11:-regu	0	2448	September 23, 2014
[PCI DSS 3.0] 11.4 Use intrusion-detection and/or intrusion-prevention techniques to detect and/or prevent intrusi Regularly Monitor and Test Networks (Requirements requirement-11:-regu	0	2278	September 23, 2014
[PCI DSS 3.0] 11.3.4 If segmentation is used to isolate the CDE from other networks, perform penetration tests at Regularly Monitor and Test Networks (Requirements requirement-11:-regu	0	2705	September 23, 2014
[PCI DSS 3.0] 11.3.3 Exploitable vulnerabilities found during penetration testing are corrected and testing is rep Regularly Monitor and Test Networks (Requirements requirement-11:-regu	0	2275	September 23, 2014
[PCI DSS 3.0] 11.3.2 Perform internal penetration testing at least annually and after any significant infrastructu Regularly Monitor and Test Networks (Requirements requirement-11:-regu	0	2141	September 23, 2014
[PCI DSS 3.0] 11.3 Implement a methodology for penetration testing that includes the following: Regularly Monitor and Test Networks (Requirements requirement-11:-regu	0	1668	September 23, 2014
[PCI DSS 3.0] 11.2.3 Perform internal and external scans, and rescans as needed, after any significant change. Sca Regularly Monitor and Test Networks (Requirements requirement-11:-regu	0	2171	September 23, 2014
[PCI DSS 3.0] 11.2.2 Perform quarterly external vulnerability scans, via an Approved Scanning Vendor (ASV) approve Regularly Monitor and Test Networks (Requirements requirement-11:-regu	0	2948	September 23, 2014
[PCI DSS 3.0] 11.2.1 Perform quarterly internal vulnerability scans and rescans as needed, until all “high-risk” v Regularly Monitor and Test Networks (Requirements requirement-11:-regu	0	3003	September 23, 2014
[PCI DSS 3.0] 11.2 Run internal and external network vulnerability scans at least quarterly and after any signific Regularly Monitor and Test Networks (Requirements requirement-11:-regu	0	1525	September 23, 2014
[PCI DSS 3.0] 11.1.2 Implement incident response procedures in the event unauthorized wireless access points are d Regularly Monitor and Test Networks (Requirements requirement-11:-regu	0	2516	September 23, 2014
[PCI DSS 3.0] 11.1.1 Maintain an inventory of authorized wireless access points including a documented business ju Regularly Monitor and Test Networks (Requirements requirement-11:-regu	0	2631	September 23, 2014
[PCI DSS 3.0] 11.1 Implement processes to test for the presence of wireless access points (802.11), and detect and Regularly Monitor and Test Networks (Requirements requirement-11:-regu	0	2130	September 23, 2014