The 12 Steps to PCI Compliance

  Security

a.k.a Payment Card Security Made Stupid Simple

Video: The 12 Steps to PCI Compliance

  1. Build and Maintain a Secure Network
    1. Firewall
  2. Use secure passwords
  3. Protect Cardholder data
  4. Encryption
  5. Maintain a vulnerability management program
    1. Anti-virus
  6. Secure systems and healthy applications
    1. System updates
  7. Implement strong access control methods
    1. SSO / AD
    2. Need to know basis
  8. Each user must have a unique id.
  9. Physical access to the data must be restricted
  10. Regularly monitor and test networks
    1. All access must be tracked
    2. Log monitoring
  11. Test Security and processes
  12. Maintain an Information (Data) Security Policy

 

LEAVE A COMMENT