PCI Requirement 10.2.2 – All Actions Taken by Any Individual with Root or Administrative Privileges
by Sarah Harvey / May 1st, 2018
Root or Administrative Privileges Accounts that have root or administrative privileges have a greater chance of impacting the security and functionality of a…
PCI Requirement 10.2.1 – All Individual User Accesses to Cardholder Data
by Randy Bartels / May 1st, 2018
Identifying Which Accounts Have Been Compromised PCI Requirement 10.2.1 requires that audit trails reconstruct all individual user accesses to cardholder data. What is…
PCI Requirement 10.2 – Implement Automated Audit Trails for all System Components to Reconstruct the Events
by Randy Bartels / May 1st, 2018
What Do I Log? Because PCI Requirement 10 requires that logging mechanisms be enabled, we often hear clients ask, “What do I log?”…
PCI Requirement 10.1 – Implement Audit Trails to Link All Access to System Components to Each Individual User
by Randy Bartels / May 1st, 2018
Audit Trails PCI Requirement 10.1 is a pretty straightforward requirement. It states, “Implement audit trails to link all access to system components to…
PCI Requirement 10 – Track and Monitor all Access to Network Resources and Cardholder Data
by Randy Bartels / May 1st, 2018
Importance of Logging and Tracking If data was compromised at your organization, how would you determine the cause? PCI Requirement 10 focuses on…