PCI Audit - Checklist & Requirements
Centraleyes, Monday, December 18,2023
The Payment Card Industry Data Security Standard, known widely as PCI DSS, is a set of security standards intended to ensure that ALL businesses who accept, process, store, or transmit credit card data do so in a safe manner. Established by the main major credit card financial companies back in 2004 (American Express, Discover Financial Services, JCB International, Mastercard and Visa), the standard has evolved over the years and is currently at version 4.0.
Important Note: PCI DSS current version, Version 3.2.1, is being phased out and will be replaced by the newly-released version, PCI DSS version 4.0, in March of 2024. On that date, PCI DSS v4.0 will become the only active version of the standard.
PCI DSS 4.0, released in early 2022, comes with some new controls to meet the dynamic cybersecurity threats and developments. The goals of version 4.0 are:
- to continue to meet the security needs of the payment industry
- to promote security as a continuous process
- to add flexibility for different methodologies
- and to enhance validation methods.
Understand the controls that make up the PCI DSS and plan your compliance journey with our PCI DSS checklist found below.