💼 7.2 Establish an access control system(s) for systems components that restricts access based on a user's need to know, and is set to “deny all” unless specifically allowed.
-
Contextual name: 💼 7.2 Establish an access control system(s) for systems components that restricts access based on a user's need to know, and is set to “deny all” unless specifically allowed.
-
ID:
/frameworks/pci-dss-v3.2.1/07/02 -
Located in: đź’Ľ 7 Restrict access to cardholder data by business need to know
Description​
Empty...
Similar​
- Internal
- ID:
dec-c-9e2d6752
- ID:
Sub Sections​
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| đź’Ľ 7.2.1 Coverage of all system components. | 7 | |||
| đź’Ľ 7.2.2 Assignment of privileges to individuals based on job classification and function. | ||||
| 💼 7.2.3 Default “deny-all” setting. |