PCI Requirement 11.6 – Ensure Security Policies and Procedures for Security Monitoring and Testing are Documented, in Use, and Known to All Affected Parties
by Randy Bartels / June 5th, 2018
Implement Policies and Procedures PCI Requirement 11 states, “Regularly test security systems and processes.” Complying with PCI Requirement 11 is critical to ensuring…
PCI Requirement 11.5.1 – Implement a Process to Respond to Any Alerts Generated by the Change-Detection Solution
by Randy Bartels / June 5th, 2018
Responding to Alerts PCI Requirement 11.5.1 works in tandem with PCI Requirement 11.5. When your change-detection mechanism gives you an alert, you must…
PCI Requirement 11.5 – Deploy a Change-Detection Mechanisms to Alert Personnel to Unauthorized Modification of Critical System Files, Configuration Files, or Content Files
by Randy Bartels / June 5th, 2018
Change-Detection Mechanisms If change-detection mechanisms are not implemented properly, a malicious individual could take advantage and could add, remove, or alter configuration file…
PCI Requirement 11.4 – Use Intrusion-Detection and/or Intrusion-Prevention Techniques to Detect and/or Prevent Intrusions into the Network
by Randy Bartels / June 5th, 2018
Detecting and Preventing Intrusion Has your organization implemented intrusion-detection and/or intrusion-prevention techniques? PCI Requirement 11.4 requires that organizations implement the following: Use intrusion-detection…