PCI DSS: Requirement 1

Install and maintain a firewall configuration to protect cardholder data


Start your free trial or use free forever to manage up to 50 endpoints. More details >

Trusted by Thousands of Customers Worldwide:
Action1 Customers

Latest Release: Action1 Endpoint Security Platform, October 2020 – “El Portal”
For more information, please refer to Action1 Online Documentation

All systems within organization's card holder data environment (CDE) must be protected from access from untrusted networks. Firewalls represent key protection mechanism for networks, because they control the flow of traffic into and out of sensitive network areas and devices. Your corporate firewalls and routers may already provide great level of protection. However, as it pertains to endpoint protection, maintaining appropriate desktop firewall configurations for cardholder data protection remains a challenge due to the unknown risks of network connections that bypass established network topology. Examples include mobile device connection tethering or accidental usage of unsecure wireless networks setup in the same building.

NOTE: This requirement is included in the PCI DSS category called Build and Maintain a Secure Network and Systems.

1.1: Firewall and Router Configuration Standards
    Assessment of desktop firewall configurations within a cardholder data environment
1.2: Restrict Connections Between Untrusted Networks and CDE
    Examination of desktop firewall configurations to verify that connections from untrusted networks to workstations in CDE are restricted
1.3: Prohibit Direct Internet Access to CDE
    Examination of desktop firewall configurations to verify that no direct access is allowed between the Internet and endpoints in the CDE
1.4: Personal Firewall Software
    Install personal firewall on devices that connect to the Internet outside of internal network, but also used to access the CDE

Achieve More With Our Integrations and RESTful API

Streamline and sync your organization’s workflow by integrating Action1 with third-party applications:

Action1 Integrations

Hundreds of Organizations Worldwide Use Action1 Platform

Community College in Texas

Our students love technology. But sometimes they break it too. Action1 allows us to understand all abnormal activities happening on college computers.

Community College in Texas

European Construction Conglomerate

Action1 plays a critical role in our cybersecurity strategy. The ability to instantly understand what is happening on your endpoints is priceless.

European Construction Conglomerate

City Government in Georgia

Our city prides on being one of the most digitally transformed cities in the region. Without Action1, the risks of managing the infrastructure were too high.

City Government in Georgia

By continuing to use our website, you agree with our use of cookies in accordance with our Privacy Policy. You can reject cookies by changing your browser settings.     
Ok, got it