PCI Requirement 10.1 – Implement Audit Trails to Link All Access to System Components to Each Individual User
by Randy Bartels / May 1st, 2018
Audit Trails PCI Requirement 10.1 is a pretty straightforward requirement. It states, “Implement audit trails to link all access to system components to…
PCI Requirement 10 – Track and Monitor all Access to Network Resources and Cardholder Data
by Randy Bartels / May 1st, 2018
Importance of Logging and Tracking If data was compromised at your organization, how would you determine the cause? PCI Requirement 10 focuses on…
PCI Requirement 9.10 – Ensure Policies and Procedures for Restricting Physical Access to Cardholder Data are Documented, In Use, and Known to All Affected Parties
by Randy Bartels / January 31st, 2018
Implementing PCI Requirement 9.10 PCI Requirement 9 states, “Restrict physical access to cardholder data.” Complying with PCI Requirement 9 is critical to ensuring…
PCI Requirement 9.9.3 – Provide Training for Personnel to Be Aware of Attempted Tampering or Replacement of Devices
by Randy Bartels / January 31st, 2018
Training on Tampering Your organization must protect the integrity of devices that physically interact with cardholder data. PCI Requirement 9.9.3 requires that your…
PCI Requirement 9.9.2 – Periodically Inspect Device Surfaces to Detect Tampering or Substitution
by Randy Bartels / January 31st, 2018
Inspect for Tampering or Substitution PCI Requirement 9.9.2 is focused specifically on the physical inspection of devices that physically interact with payment card…