What can we help you with?

Supercharged PAM

Combine the best of Session Management and Credential Management solutions at a new, incredible value!

Learn More Learn More

What is BeyondTrust?

Get a closer look inside the BeyondTrust identity & access security arsenal.

Learn More Learn More

Gartner Peer Insights

Find out how customers & analysts alike review BeyondTrust.

Learn More Learn More

Go Beyond Customer & Partner Conference

Our biggest customer conference of the year is happening in Miami and virtually on May 1-5, 2023.

Learn More Learn More

Watch Our Video

Find out more about our integrations.

Learn More Learn More

Leader in Intelligent Identity & Secure Access

Learn how BeyondTrust solutions protect companies from cyber threats.

Learn More Learn More

This white paper has been prepared so that IT and security administrators can quickly understand how BeyondTrust Privileged Access Management (PAM) solutions map into requirements set forth in the Payment Card Industry Data Security Standard (PCI DSS) version 3.2. This guide is primarily intended for those who must comply with merchant processing specifications, but applies to most service providers as well.

Initially developed in 2004, and currently on version 3.2, the Payment Card Industry Data Security Standard (PCI DSS) is an information security standard for every organization that accepts credit cards, such as Visa, MasterCard, American Express, and others. The PCI standard:

  • Was created to increase controls around cardholder data to reduce credit card fraud
  • Has become a de facto standard for protecting access to personally identifiable information (PII), especially in the retail industry
  • Is mandated by the card issuers
  • Is administered by the Payment Card Industry Security Standards Council (PCI SSC)

No single software product can ensure or implement “PCI compliance” for any enterprise. Nor is any software product in itself, “PCI compliant.” Compliance to the PCI Data Security Standard (DSS) requires a combination of business practices, personnel management, physical restrictions, and software tools.

However, specific provisions contained in the Payment Card Industry Data Security Standard Requirements and Security Assessment Procedures Version 3.2 document of the PCI Security align to a number of capabilities in the BeyondTrust solution portfolio.