My WebLink
|
Help
|
About
|
Sign Out
Home
Browse
Search
Item 23 - City-wide Cashiering Software and Hardware Upgrades
Clerk
>
Agenda Packets / Staff Reports
>
City Council (2004 - Present)
>
2023
>
02/07/2023 Regular & HA
>
Item 23 - City-wide Cashiering Software and Hardware Upgrades
Metadata
Thumbnails
Annotations
Entry Properties
Last modified
8/11/2023 10:02:05 AM
Creation date
8/11/2023 10:01:43 AM
Metadata
Fields
Template:
City Clerk
Doc Type
Agenda Packet
Agency
Clerk of the Council
Item #
23
Date
2/7/2023
There are no annotations on this page.
Document management portal powered by Laserfiche WebLink 9 © 1998-2015
Laserfiche.
All rights reserved.
/
90
PDF
Print
Pages to print
Enter page numbers and/or page ranges separated by commas. For example, 1,3,5-12.
After downloading, print the document using a PDF reader (e.g. Adobe Reader).
View images
View plain text
<br />Part 4. Action Plan for Non-Compliant Requirements <br />Select the appropriate response for “Compliant to PCI DSS Requirements” for each requirement. If you <br />answer “No” to any of the requirements, you may be required to provide the date your Company expects to <br />be compliant with the requirement and a brief description of the actions being taken to meet the requirement. <br />Check with the applicable payment brand(s) before completing Part 4. <br />Compliant to PCI <br />DSS <br />Requirements <br />Remediation Date and <br />Actions <br />(If “NO” selected for any <br />Requirement) <br />PCI DSS <br />Requirement Description of Requirement <br />(Select One) <br />YES NO <br />Install and maintain a firewall <br />configuration to protect cardholder data ☒☐1 <br />2 <br />Do not use vendor-supplied defaults for <br />system passwords and other security <br />parameters <br />☒☐ <br />☒ <br />☒ <br />☒ <br />☐ <br />☐ <br />☐ <br />3 <br />4 <br />Protect stored cardholder data <br />Encrypt transmission of cardholder data <br />across open, public networks <br />Protect all systems against malware and <br />regularly update anti-virus software or <br />programs <br />5 <br />Develop and maintain secure systems <br />and applications ☒ <br />☒ <br />☒ <br />☒ <br />☒ <br />☒ <br />☒ <br />☒ <br />☒ <br />☐ <br />☐ <br />☐ <br />☐ <br />☐ <br />☐ <br />☐ <br />☐ <br />☐ <br />6 <br />Restrict access to cardholder data by <br />business need to know7 <br />Identify and authenticate access to <br />system components8 <br />Restrict physical access to cardholder <br />data9 <br />Track and monitor all access to network <br />resources and cardholder data10 <br />Regularly test security systems and <br />processes11 <br />12 Maintain a policy that addresses <br />information security for all personnel <br />Additional PCI DSS Requirements for <br />Shared Hosting ProvidersAppendix A1 <br />Additional PCI DSS Requirements for <br />Entities using SSL/early TLS for Card- <br />Present POS POI Terminal Connections <br />Appendix A2 <br />PCI DSS v3.2.1 Attestation of Compliance for Onsite Assessments – Service Providers, Rev. 1.0 <br />© 2006-2018 PCI Security Standards Council, LLC. All Rights Reserved. <br />June 2018 <br />Page 12
The URL can be used to link to this page
Your browser does not support the video tag.