PCI policies and procedures – essential part of compliance


Since 1 January 2015, all payment-card accepting organisations have been required to comply with version 3 of the Payment Card Industry Data Security Standard (PCI DSS).
The new version introduces nearly 100 new sub-requirements, and expanded operational security policy and procedure requirements, which makes compliance challenging for many. Furthermore, there are new requirements affecting passwords, penetration testing and third-party service providers.
With these changes in mind, the PCI DSS v3.0 Documentation Toolkit by IT Governance is a valuable resource in achieving compliance.
The PCI DSS v3.0 Documentation Toolkit includes all necessary policies, procedures, forms, checklists and more that can accelerate compliance with PCI DSS v3.0.
Designed by an official PCI QSA, it includes new useful features such as:
  • PCI DSS v3.0 Document Checker
  • PCI DSS v3.0 Gap Analysis Tool
  • PCI DSS v3.0 and ISO27001:2013 Mapping Tool
  • Guidance on scoping and encryption key management.
  • Two licences for PCI DSS Staff Awareness e-learning.
Documenting policies and procedures represents an essential aspect of any information security management system and is important for meeting compliance requirements.
Using pre-written PCI DSS document templates helps save time and resources while ensuring the most important processes are documented and updated.
Download the PCI DSS v3.0 toolkit from: www.itgovernance.co.uk/shop/p-1011.aspx.
This website uses cookies. View our cookie policy