PCI Requirement 12.4.1 – Executive Management Shall Establish Responsibility
PCI v4.0 - 12.4.1: Service Providers Must Establish Protections for Card Holder Data
PCI DSS 3.2: Req. 12.4.1
PCI Requirement 12.4 – Ensure Security Policies & Procedures Define Responsibilities for All
PCI Requirement 12.3.1 – Explicit Approval by Authorized Parties
PCI Requirement 12.5.4 – Administer User Accounts, Including Additions, Deletions, and Modifications
PCI Requirement 12.1 & 12.1.1 – Establish, Publish, Maintain, and Disseminate a Security Policy
PCI Requirement 12.8.4 and 12.8.5 – Monitor Service Providers’ PCI DSS Compliance Status
PCI Requirement 5.1.1 – Ensure Anti-Virus Programs Detect, Remove and Protect Against Malware
PCI Requirement 7.3 – Document Policies & Procedures for Restricting Access to Cardholder Data
PCI Requirement 12.5.3 – Establish Security Incident Response and Escalation Procedures
PCI Requirement 12.6 – Implement a Formal Security Awareness Program
PCI Requirement 12.8 & 12.8.1 – Manage Service Providers with Cardholder Data Access
PCI Requirement 12.5.5 – Monitor and Control All Access to Data
Service Providers to Establish Charters for Information Security Program
PCI Requirement 12.7 – Screen Personnel Prior to Hire to Minimize the Risk of Attacks
PCI Requirement 11.6 – Ensure Security Policies for Security Monitoring are Documented
Establishing the Scope of your Cardholder Data Environment
PCI DSS 3.2: Req. 8.3.1
PCI Requirement 12.3.2 – Authentication for Use of the Technology
