Skip to main content

πŸ’Ό 9.3.2 Procedures are implemented for authorizing and managing visitor access to the CDE.

Description​

Including:

  • Visitors are authorized before entering.
  • Visitors are escorted at all times.
  • Visitors are clearly identified and given a badge or other identification that expires.
  • Visitor badges or other identification visibly distinguishes visitors from personnel.

Similar​

  • Sections
    • /frameworks/pci-dss-v3.2.1/09/04
    • /frameworks/pci-dss-v3.2.1/09/04/01
    • /frameworks/pci-dss-v3.2.1/09/04/02
    • /frameworks/pci-dss-v4.0.1/09/03/02

Similar Sections (Take Policies From)​

SectionSub SectionsInternal RulesPoliciesFlags
πŸ’Ό PCI DSS v3.2.1 β†’ πŸ’Ό 9.4 Implement procedures to identify and authorize visitors.4
πŸ’Ό PCI DSS v3.2.1 β†’ πŸ’Ό 9.4.1 Visitors are authorized before entering, and escorted at all times within, areas where cardholder data is processed or maintained.
πŸ’Ό PCI DSS v3.2.1 β†’ πŸ’Ό 9.4.2 Visitors are identified and given a badge or other identification that expires and that visibly distinguishes the visitors from onsite personnel.
πŸ’Ό PCI DSS v4.0.1 β†’ πŸ’Ό 9.3.2 Procedures are implemented for authorizing and managing visitor access to the CDE.

Similar Sections (Give Policies To)​

SectionSub SectionsInternal RulesPoliciesFlags
πŸ’Ό PCI DSS v3.2.1 β†’ πŸ’Ό 9.4 Implement procedures to identify and authorize visitors.4
πŸ’Ό PCI DSS v3.2.1 β†’ πŸ’Ό 9.4.1 Visitors are authorized before entering, and escorted at all times within, areas where cardholder data is processed or maintained.
πŸ’Ό PCI DSS v3.2.1 β†’ πŸ’Ό 9.4.2 Visitors are identified and given a badge or other identification that expires and that visibly distinguishes the visitors from onsite personnel.
πŸ’Ό PCI DSS v4.0.1 β†’ πŸ’Ό 9.3.2 Procedures are implemented for authorizing and managing visitor access to the CDE.

Sub Sections​

SectionSub SectionsInternal RulesPoliciesFlags