Free Tool: PCI DSS Compliance


PCI DSS applies to all entities involved in payment card processing, including merchants, processors, acquirers, issuers, and service providers.









Action1 Customers

The Payment Card Industry Data Security Standard (PCI DSS) was developed to encourage and enhance cardholder data security and facilitate the broad adoption of consistent data security measures globally. PCI DSS provides a baseline of technical and operational requirements designed to protect account data. PCI DSS applies to all entities involved in payment card processing, including merchants, processors, acquirers, issuers, and service providers. PCI DSS also applies to all other entities that store, process or transmit cardholder data (CHD) and/or sensitive authentication data (SAD).

Action1 provides this basic implementation framework for a subset of PCI DSS 3.2.1 as it pertains to endpoints running Windows operating systems that are part of the organization's cardholder data environment (CDE). It is your responsibility to define the CDE and verify that the no cardholder data exists outside of the defined CDE. Once the CDE has been defined, you can use the queries from this category to automate regular on on-demand PCI DSS assessments of your endpoints.

PCI DSS: Requirement 1
    Install and maintain a firewall configuration to protect cardholder data
PCI DSS: Requirement 2
    Do not use vendor-supplied defaults for system passwords and other security parameters
PCI DSS: Requirement 3
    Protect stored cardholder data
PCI DSS: Requirement 4
    Encrypt transmission of cardholder data across open, public networks
PCI DSS: Requirement 5
    Protect all systems against malware and regularly update anti-virus software or programs
PCI DSS: Requirement 6
    Develop and maintain secure systems and applications
PCI DSS: Requirement 7
    Restrict access to cardholder data by business need-to-know
PCI DSS: Requirement 8
    Identify and authenticate access to system components
PCI DSS: Requirement 10
    Track and monitor all access to network resources and cardholder data

Sign-up for Action1 Free Edition to install/uninstall software and patches, receive real-time alerts and view instant data from your endpoints, or run live or scheduled queries with the ability to export to CSV or Excel. Action1 Endpoint Security Platform is entirely SaaS, with online web interface (no management tools to install) and it has zero cost for basic functionality. Running in the Cloud, Action1 discovers all of your endpoints in seconds and you can query your entire network in plain English.



Hundreds of Organizations Worldwide Use Action1 Platform


Community College in Texas

Our students love technology. But sometimes they break it too. Action1 allows us to understand all abnormal activities happening on college computers.

Community College in Texas

European Construction Conglomerate

Action1 plays a critical role in our cybersecurity strategy. The ability to instantly understand what is happening on your endpoints is priceless.

European Construction Conglomerate

City Government in Georgia

Our city prides on being one of the most digititally transformed cities in the region. Without Action1, the risks of managing the infrastructure were too high.

City Government in Georgia