Complete the following using the course
text, professional journal articles, or other reputable resources, (NO
Wikipedia). Research a recent attack on an organization that involved
passwords.
The Payment Card Industry (PCI) Data
Security Standard (DSS) is a multifaceted security standard that
includes requirements for security management, policies, procedures,
network architecture, software design, and other critical protective
measures. This comprehensive standard is intended to help organizations
proactively protect the customers account data. The Assessment
Procedures (see Readings) are used to validate that a company or
application meets the PCI DSS.
For this modules writing assignment, you are to pick ONE
of the twelve requirements to document PCI DSS Requirements and
Security Assessment Procedures v 3.2.1 that is linked above and describe
how you would assess it for an organization that processes credit card
data.
For your chosen requirement, select at
least THREE sub-requirements (e.g. 1.1, 1.2, and 1.3) and describe in
your own words how you would confirm that the sub-requirement is or is
not in place.
The detailed requirements begin on
Page 20. Testing Procedures are also included in a table for each
Requirement to guide your assessment. DO NOT just copy the Testing
Procedures.
Last Completed Projects
| topic title | academic level | Writer | delivered |
|---|