
PCI Requirement 12.5.4 – Administer User Accounts, Including Additions, Deletions, and Modifications
Someone to Administer User Accounts In PCI Requirement 8.1.2, we learned there must be a formal program of control for additions, deletions, and modifications of user IDs and other credentials. This ties right in with PCI Requirement 12.5.4, which states there must be someone assigned to administer user accounts, including additions, deletions, and modifications. Think about all of the additions, deletions, and modifications that has occurred within your organization…




