Manual Examination ACCESS_CONTROL_7_1_3

This PCI DSS V1.2 report is posted on the Internet to promote Version 3.0 of LJK/Security . The corresponding vulnerability report for your own system should be guarded more carefully, such as by being reviewed only from local HTML disk files rather than via a web server.
Return to Main Page
Manual Examination ACCESS_CONTROL_7_1_3_023

PCI DSS V1.2 for Merchant

Findings Color Code
Compliant
Not assessed
Non-Compliant

PCI DSS 07 .01 .03

Question: Does the written policy for data control require that privileges be granted only based on an authorization form signed by management that authorizes specific privileges ?

Answered by: BOSTON::GRANT

As part of Manual Examination group: ACCESS_CONTROL

Answer: YES

This PCI DSS V1.2 report is posted on the Internet to promote Version 3.0 of LJK/Security . The corresponding vulnerability report for your own system should be guarded more carefully, such as by being reviewed only from local HTML disk files rather than via a web server.