PCI Requirements

The PCI Data Security Standard is broken down into 6 Categories.
Each consists of further requirements to make for a total of 12 checkbox items.

Maintain a Secure Network

Protect Cardholder Data

Vulnerability Management Program

Access Controls

Monitor and Test Networks

Info Sec Policy

  • Build and Maintain a Secure Network

    Install and maintain a firewall configuration to protect cardholder data

    Do not use vendor-supplied defaults for system passwords and other security parameters

  • Protect Cardholder Data

    Protect stored cardholder data

    Encrypt transmission of cardholder data across open, public networks

  • Maintain a Vulnerability Management Program

    Use and regularly update anti-virus software or programs

    Develop and maintain secure systems and applications

  • Implement Strong Access Control Measures

    Restrict access to cardholder data by business need-to-know

    Assign a unique ID to each person with computer access

    Restrict physical access to cardholder data

  • Regularly Monitor and Test Networks

    Track and monitor all access to network resources and cardholder data

    Regularly test security systems and processes

  • Maintain an Information Security Policy

    Maintain a policy that addresses information security for employees and contractors

Because every business deserves affordable security and compliance solutions

© 2020 Iospa Tech LLC. All Rights Reserved. Various trademarks held by their respective owners.