Compliance
Effective & Successful Audits
PCI-DSS Compliance Requirements
The Payment Card Industry Data Security Standard, also known as
PCI DSS is a set of comprehensive requirements for enhancing payment account data security. It was developed by the PCI Security
Standards Council, including American Express, Discover Financial Services, JCB International,
MasterCard Worldwide and Visa International, to help facilitate the broad adoption of consistent
data security measures on a global basis.
PCI DSS is a set of 12 high-level requirements designed to secure and protect customer payment data. If you store, process
or transmit any cardholder data electronically or manually, then your business must comply with PCI-DSS.
CFEngine Nova can help meet many of the requirements automatically, and verify not only once, but on a continuous basis
bringing compliance reports and successful audits. Below is a break-down of the PCI-DSS requirements and how CFEngine
can contribute:
| Build and Maintain a Secure Network | What is it and what can Nova do? |
| Protect Cardholder Data | What is it and what can Nova do? |
| Maintain a Vulnerability Management Program | What is it and what can Nova do? |
| Implement Strong Access Control Measures | What is it and what can Nova do? |
| Regularly Monitor and Test Networks | What is it and what can Nova do? |
| Maintain an Information Security Policy | What is it and what can Nova do? |
Need advise on how CFEngine can help you achieve PCI-DSS compliance, please click here.
