Requirements Flashcards
What is Requirement 1?
Install and maintain network security controls
What is Requirement 2?
Apply Secure Configurations to all Network Components
What is Requirement 3?
Protect Stored Account Data
What is Requirement 4?
Protect Cardholder Data with Strong Cryptography During Transmission Over Open, Public Networks
What is Requirement 5?
Protect All Systems and Networks from Malicious Software
What is Requirement 6?
Develop and Maintain Secure Systems and Software
What is Requirement 7?
Restrict Access to System Components and Cardholder Data by Business Need to Know
What is Requirement 8?
Identify Users and Authenticate Access to System Components
What is Requirement 9?
Restrict Physical Access to Cardholder Data
What is Requirement 10?
Log and Monitor All Access to System Components and Cardholder Data
What is Requirement 11?
Test Security of Systems and Networks Regularly
What is Requirement 12?
Support Information Security with Organizational Policies and Programs
What are the 6 control objectives of PCI?
- Build and maintain a secure network and systems
- Protect account data
- Maintain a vulnerability management program
- Implement strong access control measures
- Regularly monitor and test networks
- Maintain an information security policy
