💼 12.3.2 A targeted risk analysis is performed for each PCI DSS requirement that the entity meets with the customized approach.
-
Contextual name: 💼 12.3.2 A targeted risk analysis is performed for each PCI DSS requirement that the entity meets with the customized approach.
-
ID:
/frameworks/pci-dss-v4.0.1/12/03/02 -
Located in: 💼 12.3 Risks to the cardholder data environment are formally identified, evaluated, and managed.
Description​
Includes:
- Documented evidence detailing each element specified in Appendix D: Customized Approach (including, at a minimum, a controls matrix and risk analysis).
- Approval of documented evidence by senior management.
- Performance of the targeted analysis of risk at least once every 12 months.
Similar​
- Sections
/frameworks/pci-dss-v4.0/12/03/02
Similar Sections (Take Policies From)​
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| 💼 PCI DSS v4.0 → 💼 12.3.2 A targeted risk analysis is performed for each PCI DSS requirement that the entity meets with the customized approach. |
Similar Sections (Give Policies To)​
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| 💼 PCI DSS v4.0 → 💼 12.3.2 A targeted risk analysis is performed for each PCI DSS requirement that the entity meets with the customized approach. |
Sub Sections​
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|