PCI Requirement 10.3.3 – Date and Time
When did an Event Occur?
PCI Requirement 10.3 defines what information logs should contain. PCI Requirement 10.3.3, a part of PCI Requirement 10.3, relates to detailing date and time in log entries. To comply with PCI Requirement 10.3.3, every logged event must contain the time and date that the logged event occurred. By doing so, an organization can always identify when an event occurred.
Through interviews and observation, auditors will try to verify that a date and time stamp is included in log entries.
Each logged event must contain the time and date that the logged event occurred.