req_12Level 1

Requirement 12 - Support Information Security with Organizational Policies and Programs

Requirement 12 mandates that an organization establish and maintain comprehensive information-security policies and programs covering all PCI DSS obligations, including risk assessment, policy awareness, and incident-response procedures, with documented policies reviewed and updated at least annually.

GET/api/v1/systems/reg_pci_dss/nodes/req_12

Manual TranscriptionProprietary (PCI SSC)Source

Hierarchy Explorer

Hierarchy ExplorerChevron to expand - click title to open

req_12_1012.10 - Suspected and Confirmed Security Incidents Responded to Immediately

req_12_812.8 - Risk to Information Assets from Third-Party Relationships Managed

Cross-system equivalences0

No cross-system equivalences mapped for this node.

Report a data issue