<img height="1" width="1" style="display:none" src="https://www.facebook.com/tr?id=1977396509252409&amp;ev=PageView&amp;noscript=1">

SUITE OF SERVICES services menu

Hamburger-menu.png
MobileSearchIcon.png
Brightline-BlogBanner.jpg

THE SCHELLMAN ADVANTAGE BLOG

< BACK TO BLOG HOME

PCI SSC Releases Scoping and Segmentation Guidance

PCI SSC Releases Scoping and Segmentation Guidance

Written by KATE DONOFRIO on Feb 1, 2017

As we all were working hard, with holiday vacations and a new year in our reach, the PCI SSC released a guidance document that has been long awaited. The Guidance on Scoping and Segmentation was released to all December 2016.

The guidance includes a lot of great clarifications on scope. For instance, they finally ended the age-old argument of whether a jump server, or anything else for that matter, could descope the administrator workstation/laptop. By the way the answer to that question appears definitively to be NO.

As with most guidance, it has also created a lot of unanswered questions. In my opinion, the best thing so far the guidance has accomplished is that it has provoked a lot of great conversations on scoping and has companies thinking about security. I highly suggest giving it a read and sharing it with your teams.

For more information on the new guidance and scoping scenarios, you can join Jacob Ansari on our free webinar: WEBINAR - Determining Scope for PCI DSS Compliance

Topics: PCI

KATE DONOFRIO

MEET THE WRITER

KATE DONOFRIO

LEAD QSA

COMMENTS