πΌ 10.8 Implement a process for the timely detection and reporting of failures of critical security control systems.
-
Contextual name: πΌ 10.8 Implement a process for the timely detection and reporting of failures of critical security control systems.
-
ID:
/frameworks/pci-dss-v3.2.1/10/08 -
Located in: πΌ 10 Track and monitor all access to network resources and cardholder data
Descriptionβ
Additional requirement for service providers only.
Including but not limited to failure of:
- Firewalls.
- IDS/IPS.
- FIM.
- Anti-virus.
- Physical access controls.
- Logical access controls.
- Audit logging mechanisms.
- Segmentation controls (if used).
Similarβ
- Sections
/frameworks/pci-dss-v4.0/10/07/01
- Internal
- ID:
dec-c-b9f6ceef
- ID:
Similar Sections (Take Policies From)β
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| πΌ PCI DSS v4.0 β πΌ 10.7.1 Failures of critical security control systems are detected, alerted, and addressed promptly. |
Similar Sections (Give Policies To)β
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| πΌ PCI DSS v4.0 β πΌ 10.7.1 Failures of critical security control systems are detected, alerted, and addressed promptly. |
Sub Sectionsβ
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| πΌ 10.8.1 Respond to failures of any critical security controls in a timely manner. |