Highlights of PCI DSS
V1.2 of the PCI DSS standard specifies 12 requirements for compliance, organized into six logically related groups, which are called "control objectives."
| Control Objectives | PCI DSS Requirements |
|---|---|
| Build and Maintain a Secure Network | 1. Install and maintain a firewall configuration to protect cardholder data |
| 2. Do not use vendor-supplied defaults for system passwords and other security parameters | |
| Protect Cardholder Data | 3. Protect stored cardholder data |
| 4. Encrypt transmission of cardholder data across open, public networks | |
| Maintain a Vulnerability Management Program | 5. Use and regularly update anti-virus software on all systems commonly affected by malware |
| 6. Develop and maintain secure systems and applications Implement Strong Access | |
| Control Measures | 7. Restrict access to cardholder data by business need-to-know |
| 8. Assign a unique ID to each person with computer access | |
| 9. Restrict physical access to cardholder data | |
| Regularly Monitor and Test Networks | 10. Track and monitor all access to network resources and cardholder data |
| 11. Regularly test security systems and processes | |
| Maintain an Information Security Policy | 12. Maintain a policy that addresses information security |
How Identity Finder addresses PCI DSS
- Identity Finder finds cardholder data, like credit card numbers, bank account numbers, social security numbers, dates of birth, and more.
- Identity Finder provides numerous remediation options like shred, scrub, secure, and quarantine to protect PCI data
- Identity Finder provides enterprise-wide visibility into unsecured data to regularly monitor networks and help enforce policies that address information security
3 Easy Steps using Identity Finder to Minimize Impact
- Run Identity Finder and find payment card industry (PCI) data
- Shred unnecessary PCI data spread across your network;
- and Protect unsecured files using Identity Finder.