Chapter 17

You’re compliant, now what?


This chapter covers the details you need to keep in mind once you have achieved compliance. Security is not as simple as just getting it implemented. You have to monitor and maintain it. This chapter contains information about ongoing training and periodic reviews, as well as how to conduct a self-assessment to ensure continued compliance.


Maintain Compliance
Information in this chapter
• Security is a process, not an event
• Plan for periodic review and training
• PCI requirements with periodic maintenance
• PCi self-assessment
• Case study
Congratulations, you made it! Your Report on Compliance (ROC) or SAQ is completed and you are ready to complete your Attestation of Compliance ...

Get PCI Compliance, 4th Edition now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.