Appendix B: Compensating Controls

Appendix B: Compensating Controls Compensating controls may be considered for most PCI DSS requirements when an entity cannot meet a requirement explicitly as stated, due to legitimate technical or documented business constraints, but has sufficiently mitigated the risk associated with the requirement through implementation of other, or compensating, controls.
pcinetwork
[PCI DSS 3.0] [PCI DSS 3.0] Compensating controls may be considered for most PCI DSS requirements when an entity cannot meet a r
Replies
0
Views
822
pcinetwork
You must log in or register to post here.
Top