💼 10.8 Implement a process for the timely detection and reporting of failures of critical security control systems.
-
Contextual name: 💼 10.8 Implement a process for the timely detection and reporting of failures of critical security control systems.
-
ID:
/frameworks/pci-dss-v3.2.1/10/08 -
Located in: 💼 10 Track and monitor all access to network resources and cardholder data
Description​
Additional requirement for service providers only.
Including but not limited to failure of:
- Firewalls.
- IDS/IPS.
- FIM.
- Anti-virus.
- Physical access controls.
- Logical access controls.
- Audit logging mechanisms.
- Segmentation controls (if used).
Similar​
- Sections
/frameworks/pci-dss-v4.0/10/07/01
- Internal
- ID:
dec-c-b9f6ceef
- ID:
Similar Sections (Take Policies From)​
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| 💼 PCI DSS v4.0 → 💼 10.7.1 Failures of critical security control systems are detected, alerted, and addressed promptly. |
Similar Sections (Give Policies To)​
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| 💼 PCI DSS v4.0 → 💼 10.7.1 Failures of critical security control systems are detected, alerted, and addressed promptly. |
Sub Sections​
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| 💼 10.8.1 Respond to failures of any critical security controls in a timely manner. |