Ride the Storm: Navigating Through Unstable Periods / Katerina Rudko (Belka G...
Â
PCI Risk Assessment
1. Risk Assessment for PCI Compliance
[Mandatory as per Requirement 12.1.2]
Sign up for FREE www.smart-ra.com
2. ⢠PCI 2.0 requires a formal and structured
risk assessment methodology.
⢠Meet the requirement with SMART
Sign up for FREE www.smart-ra.com
3. Requirement 12.1.2 emphasizes the need for a structured
and formal risk assessment methodology.
⢠âRequirement 12.1 Establish, publish, maintain, and
disseminate a security policy that accomplishes the
following:
⢠Requirement 12.1.2 Includes an annual process that
identifies threats, and vulnerabilities, and results in a
formal risk assessment.
(Examples of risk assessment methodologies include but
are not limited to OCTAVE, ISO 27005 and NIST SP 800-
30.)â
Sign up for FREE www.smart-ra.com
4. Scope Establishment Identify Assets Identify Threats
Profiling: Add Controls Identify Vulnerabilities
Sign up for FREE www.smart-ra.com
5. â˘Search Assets
â˘Bulk Upload of Assets
â˘Use predefined Standard
Assets
â˘Enter CIA values of
Assets to generate Asset
Value
â˘Simple view of
â˘Search Asset and Threat
Vulnerabilities Mapping
â˘Prioritize â˘Search and Find
with Level of Threats
Vulnerability
â˘Do Profiling by Location
â˘Vulnerabilities are also considered in defining Controls
â˘Integrate Action Management Module to implement Controls
www.smart-ra.com
6. â˘Manage
â˘Assign Incidents by
Actions to applying
Implement relevant
Controls or Controls
Manage
Incidents
â˘Create Surveys â˘Create and
to identify Manage Policy
organizational and Procedure
vulnerabilities documents.
â˘Represent â˘Manage
findings with Document Review
Survey Reports
â˘Risk Assessment
Report
â˘Monitor your â˘Asset Report
Organizational â˘Threat Report
Risk Health â˘BLSS Report, etc
â˘Measure
Effectiveness of
Controls
www.smart-ra.com
7. ⢠Meet RA requirements of PCI 2.0.
⢠Use RA for preparation of PCI Compliance.
⢠Reduce risks in your organization and improve
security.
⢠Also help in meeting ISO 27001 and other Risk
Management Standards in one goâŚ
⢠Save 80% of your time and cost on risk assessment.
Sign up for FREE www.smart-ra.com