PCI Requirements
Compliance with the PCI DSS can only be achieved through tighter controls over sensitive customer and transaction cardholder data. Compliance is not just a matter of accreditation, or even ensuring that the periodic audit specifications are met. Compliance is a status that must be able to be tested at any moment in time. In the event of a security incident or breach occurring the merchant organisation will be required to prove they were operating within the boundaries of the standard at the time of the compromise.
The following sections offer an overview of issues to consider when addressing each of the 12 Requirements in the PCI DSS. Leading solution providers and stakeholders provide advice, tips and tricks.
Relevant Files
Abstract: Achieving PCI Compliance Abstract (Provided by The IT Security Forum)
Abstract: Countdown to Compliance (Provided by The IT Security Forum)
Abstract: Payment Card Industry Security Standards (Provided by The IT Security Forum)
Abstract: PCI – Establishing The Facts (Provided by The IT Security Forum)
Abstract: PCI Compliance – The Next Steps (Provided by The IT Security Forum)
Abstract: Retail Security (Provided by The IT Security Forum)
Escaping PCI Purgatory (Provided by IBM Internet Security Systems)
Solutions
IBM PCI Services (added by IBM Internet Security Systems)