PCI DSS · Build and maintain a secure network
Req. 2 Apply secure configurations to all system components
Apply secure configurations and remove or change vendor defaults across all system components.
Mapped across 10 provisions
Equivalent and related requirements in other frameworks and regulations.
- NIST CSF 2.0EquivalentOfficial mapping
Source: PCI DSS v4.0 / NIST CSF 2.0
PR.PS-01 Configuration management practices establishedConfiguration sécurisée et durcissement
- CIS Controls v8EquivalentCurated4.1 Establish and maintain a secure configuration process
Configuration sécurisée et durcissement
- Cyber EssentialsEquivalentCuratedCE-2 Secure configuration
Configuration sécurisée et durcissement
- Cyber EssentialsPartialCuratedCE-1 Firewalls
Configuration sécurisée et durcissement
- Essential EightPartialCuratedE8-5 Application control
Configuration sécurisée et durcissement
- Essential EightPartialCuratedE8-6 Restrict Microsoft Office macros
Configuration sécurisée et durcissement
- Essential EightPartialCuratedE8-7 User application hardening
Configuration sécurisée et durcissement
- ISO 27001EquivalentCuratedA.8.9 Configuration management
Configuration sécurisée et durcissement
- NIST 800-171EquivalentCurated3.4.2 Establish and enforce security configuration settings
Configuration sécurisée et durcissement
- NIST 800-53EquivalentCuratedCM-6 Configuration settings
Configuration sécurisée et durcissement