PCI Compliance Requirements

:: BACK TO PCI RESOURCE CENTER ::

Build and Maintain a Secure Network
REQUIREMENTS	CYBERA SOLUTIONS
1. Install and maintain a firewall configuration to protect cardholder data.	Managed Firewall Services 24x7 Security Operations Center Network Management & Monitoring Remote Logging and Retention Rogue Wireless AP Detection Services Security Information and Event Management Network Design Services Professional Services
2. Do not use vendor-supplied defaults for system passwords and other security parameters.	Rogue Wireless AP Detection Services Professional Services Radius Services Vulnerability Scanning
Protect Cardholder Data
REQUIREMENTS	CYBERA SOLUTIONS
3. Protect stored cardholder data.	Managed Firewall Services 24x7 Security Operations Center Network Management & Monitoring Remote Logging and Retention Rogue Wireless AP Detection Services Security Information and Event Management Intrusion Detection and Prevention
4. Encrypt transmission of cardholder data across open, public networks.	Private Network Serivces VPN Services Managed Firewall Services Rogue Wireless AP Detection Services Managed Secure Wi-Fi SSL Remote Access
Maintain a Vulnerability Management Program
REQUIREMENTS	CYBERA SOLUTIONS
5. Use and regularly update anti-virus software or programs.	Hosted Unified Threat Management Intrusion Detection and Prevention 24x7 Security Operations Center Network Management & Monitoring Security Information and Event Management
6. Develop and maintain secure systems and applications.	Intrusion Detection and Prevention Managed Firewall Services 24x7 Security Operations Center Network Management & Monitoring Remote Logging and Retention Rogue Wireless AP Detection Services Security Information and Event Management Network Design Services Professional Services
Implement Strong Access Control Measures
REQUIREMENTS	CYBERA SOLUTIONS
7. Restrict access to cardholder data by business need-to-know.	Rogue Wireless AP Detection Services Professional Services Radius Services Vulnerability Scanning
8. Assign a unique ID to each person with computer access.	Radius Services Managed Secure Wi-Fi SSL Remote Access Security Information and Event Management
9. Restrict physical access to cardholder data.	Data Center/ Co-Location Services Remote Site Services Professional Services Network EF&I
Regularly Monitor and Test Networks
REQUIREMENTS	CYBERA SOLUTIONS
10. Track and monitor all access to network resources and cardholder data.	Radius Services Managed Secure Wi-Fi SSL Remote Access Security Information and Event Management 24x7 Security Operations Center Network Management & Monitoring Remote Logging and Retention Rogue Wireless AP Detection Services
11. Regularly test security systems and processes	Intrusion Detection and Prevention 24x7 Security Operations Center Network Management & Monitoring Remote Logging and Retention Rogue Wireless AP Detection Services Security Information and Event Management Vulnerability Scanning
Maintain an Information Security Policy
REQUIREMENTS	CYBERA SOLUTIONS
12. Maintain a policy that addresses information security for employees and contractors.	Network Management & Monitoring Professional Services Carrier & Vendor Management