PCI Requirement 7.1.2 – Restrict Access to Privileged User IDs to Least Privileges Necessary
PCI v4.0 - 7.1.2: Have Requirement 7 Roles and Responsibilities In Place
PCI Requirement 7.1 – Limit Access to System Components and Cardholder Data
PCI Requirement 7.1.1 – Define Access Needs for Each Role
PCI Requirement 7.2.1 – Coverage of all System Components
PCI Requirement 7.1.4 – Require Documented Approval by Authorized Parties
PCI Requirement 7 – Restrict Access to Cardholder Data by Business Need to Know
PCI Readiness Series: PCI DSS Requirement 7
PCI Requirement 2.1 - Always Change Vendor-Supplied Defaults
PCI Requirement 7.2 – Establish an Access Control System
PCI Requirement 8.6 – Authentication Mechanisms Must Not Be Shared Among Multiple Accounts
PCI Requirement 9.8 – Destroy Media When it is no Longer Needed
PCI Requirement 7.2.2 – Assignment of Privileges Based on Job Function
PCI Requirement 9.9.2 – Periodically Inspect Device Surfaces to Detect Tampering or Substitution
PCI Requirement 7.2.3 – Default “Deny-All” Setting
PCI Requirement 9.1.2 – Implement Physical Controls to Restrict Access to Accessible Network Jacks
PCI Requirement 9.6.1 – Classify Media so the Sensitivity of the Data Can Be Determined
PCI Requirement 8.1.2 – Control Addition, Deletion, and Modification of User IDs, Credentials
PCI Requirement 7.3 – Document Policies & Procedures for Restricting Access to Cardholder Data
PCI Requirement 12.8.3 – Ensure there is an Established Process for Engaging Service Providers
