A. B. Cooper Jr. et al.The Definitive Guide to PCI DSS Version 4https://doi.org/10.1007/978-1-4842-9288-4_16

16. The Customized Approach, Compensating Controls, and the Targeted Risk Analysis

Arthur B. Cooper Jr.¹, Jeff Hall², David Mundhenk³ and Ben Rothke⁴

(1)

Colorado Springs, CO, USA

(2)

Minneapolis, MN, USA

(3)

Austin, TX, USA

(4)

Clifton, NJ, USA

Overview

PCI has always allowed folks to use “compensating controls” to meet any requirement they are unable to meet using the defined control within the PCI requirements. This has been the norm for all versions of the PCI DSS until now. Version 4.0 brings us the new “customized approach.” Ever since the 2019 PCI ...

Get The Definitive Guide to PCI DSS Version 4: Documentation, Compliance, and Management now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

The Definitive Guide to PCI DSS Version 4: Documentation, Compliance, and Management by Arthur B. Cooper Jr., Jeff Hall, David Mundhenk, Ben Rothke

16. The Customized Approach, Compensating Controls, and the Targeted Risk Analysis

Overview

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly