New Self Assessment Questionnaires Released for PCI

Bookmark and Share
Posted on February 6th, 2008 by Tony Bradley

The PCI Security Standards Council already had an SAQ (Self Assessment Questionnaire), but it was confusing and intimidating for some organizations. In an attempt to simplify and streamline PCI DSS compliance, they have released a set of 4 new SAQ’s designed for specific scenarios:

  • SAQ A: Addresses requirements applicable to merchants who have outsourced all cardholder data storage, processing and transmission.
  • SAQ B: Created to address requirements pertinent to merchants who process cardholder data via imprint machines or standalone dial-up terminals only.
  • SAQ C: Constructed to focus on requirements applicable to merchants whose payment applications systems are connected to the Internet.
  • SAQ D: Designed to address requirements relevant to all service providers defined by a payment brand as eligible to complete an SAQ and those merchants who do not fall under the types addressed by SAQ A, B or C.

    • For more information, and to download the SAQ’s, visit the PCI Security Standards Council site.

    _________________________________________

    Tony Bradley
    www.tonybradley.com
    Essential. Computer. Security.


    Tags: Blog // Comments Off

    « TSA Opens Blog Site
    New Functionality in Windows Server 2008 »