【PCI DSS】How to meet the additional requirement for Service Provider only by PCI DSS v4.0 provision 12.4.2?
Service Providers must conduct quarterly inspections based on PCI DSS v4.0 provision 12.4.2 (PCI DSS v3.2.1 – 12.11), to confirm that the company’s security policies and procedures, etc. are substantially followed and perform regular checks of various control measures. PCI DSS v4.0 provision 12.4.2 lists 5 inspection items, including but not limited to: […]