πΌ 12.3.2 A targeted risk analysis is performed for each PCI DSS requirement that the entity meets with the customized approach.
-
Contextual name: πΌ 12.3.2 A targeted risk analysis is performed for each PCI DSS requirement that the entity meets with the customized approach.
-
ID:
/frameworks/pci-dss-v4.0.1/12/03/02 -
Located in: πΌ 12.3 Risks to the cardholder data environment are formally identified, evaluated, and managed.
Descriptionβ
Includes:
- Documented evidence detailing each element specified in Appendix D: Customized Approach (including, at a minimum, a controls matrix and risk analysis).
- Approval of documented evidence by senior management.
- Performance of the targeted analysis of risk at least once every 12 months.
Similarβ
- Sections
/frameworks/pci-dss-v4.0/12/03/02
Similar Sections (Take Policies From)β
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| πΌ PCI DSS v4.0 β πΌ 12.3.2 A targeted risk analysis is performed for each PCI DSS requirement that the entity meets with the customized approach. |
Similar Sections (Give Policies To)β
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| πΌ PCI DSS v4.0 β πΌ 12.3.2 A targeted risk analysis is performed for each PCI DSS requirement that the entity meets with the customized approach. |
Sub Sectionsβ
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|