๐ผ 12.3.4 Hardware and software technologies in use are reviewed at least once every 12 months.
-
Contextual name: ๐ผ 12.3.4 Hardware and software technologies in use are reviewed at least once every 12 months.
-
ID:
/frameworks/pci-dss-v4.0/12/03/04 -
Located in: ๐ผ 12.3 Risks to the cardholder data environment are formally identified, evaluated, and managed.
Descriptionโ
Including at least the following:
- Analysis that the technologies continue to receive security fixes from vendors promptly.
- Analysis that the technologies continue to support (and do not preclude) the entity's PCI DSS compliance.
- Documentation of any industry announcements or trends related to a technology, such as when a vendor has announced โend of lifeโ plans for a technology.
- Documentation of a plan, approved by senior management, to remediate outdated technologies, including those for which vendors have announced โend of lifeโ plans.
Similarโ
- Sections
/frameworks/pci-dss-v4.0.1/12/03/04
Similar Sections (Take Policies From)โ
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| ๐ผ PCI DSS v4.0.1 โ ๐ผ 12.3.4 Hardware and software technologies in use are reviewed at least once every 12 months. |
Similar Sections (Give Policies To)โ
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| ๐ผ PCI DSS v4.0.1 โ ๐ผ 12.3.4 Hardware and software technologies in use are reviewed at least once every 12 months. |
Sub Sectionsโ
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|