|
You'll need plenty of these before you finish your PCI DSS self-assessment |
Long overdue, PCI DSS validation documents for self-assessment have been updated to the current standard PCI DSS 1.1. Version 1.1 of the Self-Assessment Questionnaire has been rewritten to be more in line with the Security Audit Procedures. There are also several companion documents :
- How it fits together - Flow chart of the tools to help organizations with PCI DSS compliance and self-assessment.
- Instructions for completing a self-assessment - According to payment brand rules, all merchants and their service providers are required to comply with the PCI Data Security Standard in its entirety
- Navigating the PCI DSS document - “Guidance” for each of the 226 questions.
- Frequently Asked Questions
The merchant must verify that it adheres to all of the requirements stipulated in the PCI DSS - but heah - who cares about implementation and how much it costs and whether or the requirements are relevant to the merchant and his operating environment.
Any merchant who takes the PCI DSS 1.1 self-assessment checklist seriously should use the free Practical threat analysis for PCI package. It makes the credit card risk assessment simple and cost-effective. This great free software will also save you money on your security implementation by helping you select the most cost-effective countermeasures.
