all InfoSec news
Just Published: PCI DSS v4.x Targeted Risk Analysis Guidance
PCI Perspectives blog.pcisecuritystandards.org
Risk analysis is a foundational tool to help organizations identify and prioritize potential threats and vulnerabilities within their environment. PCI DSS v4.0 introduced the concept of targeted risk analysis (TRA) with two different types of TRAs to provide entities with the flexibility to evaluate risk and determine the security impact of specific requirement controls, as appropriate for their environment.
analysis concept dss entities environment flexibility guidance identify impact organizations pci pci-dss pci dss v4.0 potential threats prioritize resource guide risk risk analysis security threats threats and vulnerabilities tool types vulnerabilities