Antivirus / Wireless PCI v2 Controls Scope

Question

Do the Antivirus / Wireless controls within PCI v2 apply for the entire organisation, or just for the PCI scope?

northox · Answer 1 · 2013-10-26T00:46:55.520

1

No... but it depends if you're confident with the layer isolating what's in-scope and what's out-of-scope. If so, you're good.

PCI requirements only applies to what's in-scope - nothing else. The tricky part is actually to define this line. It has to be black and white and that's not easy - too many shades of grey.

To be sure, as always validate with a QSA (Qualified Security Assessor).

edited Oct 26 '13 at 00:46

answered Oct 25 '13 at 22:12

northox

1,403
16
26

score 1 · Answer 2 · answered Nov 19 '13 at 20:30

1

It would be just for the scope but for the wireless you need to prove they do not cross connect. Here I run a complete separate network and internet connection for all of our PCI stuff.

answered Nov 19 '13 at 20:30

darkstar2002

11
1

Antivirus / Wireless PCI v2 Controls Scope

2 Answers2