PCI DSS recommendations
Find the quick summary of PCI DSS recommendations below:
- Restrict the use of administrative functions to defined endpoint
networks and devices,
such as specific laptops or desktops that have been approved for
such access.
- Require multi-factor authentication for all administrative functions.
- Ensure that all changes are implemented and tested properly. Consider
requiring
additional management oversight, above and beyond that which is
required through the normal change-management process.
- Separate administrative functions such that hypervisor administrators
do not have the ability to modify, delete, or disable hypervisor audit
logs.
- Send hypervisor logs to physically separate, secured storage as close
to real-time as possible.
- Monitor audit logs to identify activities that could indicate
a breach in the integrity of segmentation, security controls,
or communication channels between workloads. Implement an automatic
log analysis solution and develop scripts notifying of all potentially
harmful actions, according to company security policy.
- Separate duties for administrative functions, such that authentication
credentials for the hypervisor do not have access to applications, data,
or individual virtual components.