Understanding and Documenting PCI DSS Scope
As new PCI DSS guidance emerges, the expectations placed on auditors and the entities they assess are evolving. New requirement 12.5.2 defines scope documentation—a critical element of identifying cardholder data environment (CDE) boundaries—and designates the roles and responsibilities of all parties.
With the release of version 4.0, PCI DSS has undergone significant updates, bringing a host of new requirements and scope clarifications that organizations must understand and implement to maintain compliance.
As new PCI DSS guidance emerges, the expectations placed on auditors and the entities they assess are evolving. New requirement 12.5.2 defines scope documentation—a critical element of identifying cardholder data environment (CDE) boundaries—and designates the roles and responsibilities of all parties.
Join TrustedSec Compliance Services Practice Lead Chris Camejo as he covers all aspects of PCI DSS scope determination and outlines what you need to be prepared for requirement 12.5.2.
During this webinar, attendees learn:
- How PCI DSS requirement 12.5.2 affects your business
- What systems should be considered in scope and how to properly document them
- How to maintain compliance with other requirements