PCI-DSS Operational Security Standard

This standard sets out the mandatory operational criteria for the operation of the University’s cardholder data environment (CDE) components.

It outlines the University’s PCI-DSS systems security compliance requirements in accordance with PCI-DSS Self-Assessment Questionnaire C (SAQ-C), but at an abbreviated level. Each outline requirement references the relevant sections within SAQ-C.

If this standard applies to you, you must understand and meet the full requirements of PCI-DSS SAQ-C which are applicable to you. Specific audits will be carried out against each requirement and evidence will be recorded to demonstrate the University’s compliance status. You must also familiarise yourself with the requirements of the University’s PCI-DSS Security Policy.

Click on the link on the right to read the full document.