Our website uses cookies

Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing Infosecurity Magazine, you agree to our use of cookies.

Okay, I understand Learn more

Beyond PCI Checklists: Securing Cardholder Data with Enhanced File Integrity Monitoring

Download Now

To download this white paper you’ll need an Infosecurity Magazine account. Log in or sign up below.

Log In

Sign Up

Get up-to-the-minute news and opinions, plus access to a wide assortment of Information Security resources that will keep you current and informed.

This will be used to identify you if you take part in our online comments.
Your password should be at least six characters long. It is case sensitive. Passwords can only consist of alphanumeric characters or ~!@#$%^&*()_-+=?.

Infosecurity Magazine collects personal information when you register for our magazine and sponsored content. We will use this information to deliver the product or service for which you are registering.

We will also share your information with the declared sponsor of any webinar, whitepaper or virtual event for which you register and this sponsor is clearly indicated on each event page. You can opt out at any time in your user account.

For more information explaining how we use your information please see our privacy policy.

By registering you agree with our terms and conditions and privacy policy.

Part of the issue may be that the configuration settings were compliant with the settings specified in the PCI DSS, but only for a point in time. But what happens as soon as the audit is over and changes to computer system configurations take those systems out of compliance? The true intent of the PCI DSS is not for organisations to be compliant at a single point in time, but instead to maintain a compliant state over time, in the face of inevitable change that occurs to in-scope systems.

This white paper, provided by Tripwire, discusses the following:

  • The high-level goals of the PCI DSS.
  • The two areas of technical controls the PCI DSS requires-configuration and change process controls.
  • How Configuration Assessment helps you address the configuration checklist items in the PCI DSS.
  • How Enhanced File Integrity Monitoring helps you maintain PCI DSS compliance over time in the face of configuration change.