Contracting for PCI DSS Compliance

PCI DSS Requirement 12.8.2 states that companies should maintain a written agreement with service providers that are responsible for the security of cardholder data the service provider possesses. Many people consider this requirement unnecessary or less important than most of the requirements....

By

Christian Moldes

July 15, 2010

All papers are copyrighted. No re-posting of papers is permitted

Related Content

Why_SANS_-_Blog_-_4_Trends_That_Will_Define_the_CISO’s_Role_in_2024_340_x_340.jpg

Cybersecurity Insights

4 Trends That Will Define the CISO's Role in 2024

These are the topics most prevalent in countless discussions with security leaders and experts.

340x340_-_Blog_-_Why_SANS_infographic_-_Day_1_(2).jpg

Cybersecurity Insights

4 Key Cybersecurity Trends to Watch in 2024

This infographic shows four major trends that will give CISOs the opportunity to empower their organizations and security teams in 2024.

Cybersecurity Insights

The Ultimate List of SANS Cheat Sheets

Need help cutting through the noise? SANS has a massive list of Cheat Sheets available for quick reference.