[PCI DSS 3.0] [PCI DSS 3.0] 9.10 Ensure that security policies and operational procedures for restricting physical access to car

Discussion in 'Requirement 9: Restrict physical access to cardholder data' started by pcinetwork, Dec 31, 2013.

  1. pcinetwork

    pcinetwork PCINetwork.org Admin

    9.10 Ensure that security policies and operational procedures for restricting physical access to cardholder data are documented, in use, and known to all affected parties.

    9.10 Examine documentation and interview personnel to verify that security policies and operational procedures for restricting physical access to cardholder data are:
    • Documented,
    • In use, and
    • Known to all affected parties.

    Personnel need to be aware of and following security policies and operational procedures for restricting physical access to cardholder data and CDE systems on a continuous basis.
     

Share This Page