PCI Requirement 9.6 – Maintain Strict Control Over the Internal or External Distribution of Any Kind of Media
by Randy Bartels / January 31st, 2018
Distribution of Media If your organization does not have policies and procedures in place to control the distribution of media, cardholder data could…
PCI Requirement 9.5.1 – Store Media Backups in a Secure Location and Review the Location’s Security Annually
by Randy Bartels / January 31st, 2018
Storing Media Backups Part of physically securing media that houses cardholder data is storing media backups in a secure location. If not, media…
PCI Requirement 9.5 – Physically Secure all Media
by Randy Bartels / January 31st, 2018
The Physical Security of Media At your organization, are receipts ever left on someone's desk? Are reports left in the printer and forgotten…
PCI Requirement 9.4.4 – A Visitor Log is Used to Maintain a Physical Audit Trail of Visitor Activity to the Facility, Computer Rooms, and Rooms Where CHD is Stored
by Randy Bartels / January 31st, 2018
Maintain a Visitor Log In order to record which visitors have entered your sensitive areas, PCI Requirement 9.4.4 requires, “A visitor log is used…
PCI Requirement 9.4.3 – Visitors are Asked to Surrender the Badge or Identification Before Leaving the Facility or at the Date of Expiration
by Randy Bartels / January 31st, 2018
Visitors Must Surrender Their Badge Upon Their Departure To comply with PCI Requirement 9.4, there’s an important step outline in PCI Requirement 9.4.3,…