Timeline for PCI DSS 4.0: The Second Requirement and Security Configuration
Previously, we discussed preparing for the new PCI DSS 4.0 standard and how to wrap your head around the first requirement–network and system security. The following requirement moves on to another critically important aspect of compliance and security–configuration management.
Here, we’ll break down the concept of configuration management in PCI DSS and how this is spelled out in the Second Requirement.