top of page
< Back

11.3.2 PCI DSS (v3.2.1)

Compliance Standard

Compliance Version

Control ID

PCI DSS

(v3.2.1)

11.3.2

Requirement 11: Regularly test security systems and processes

(v3.2.1)

Perform internal penetration testing at least annually and after any significant infrastructure or application upgrade or modification (such as an operating system upgrade, a sub-network added to the environment, or a web server added to the environment).

bottom of page