Payment Card Industry Data Security Standard (PCI DSS) Authoritative Source Content

Document created by Susan Read-Miller Employee on May 20, 2018Last modified by Susan Read-Miller Employee on Aug 20, 2019
Version 5Show Document
  • View in full screen mode

The Payment Card Industry Data Security Standard is a multifaceted security standard that includes requirements for security management, policies, procedures, network architecture, software design and other critical protective measures. This comprehensive standard is intended to help organizations proactively protect customer account data.


Updated August, 2019:  New version released (PCI-DSS v3.2.1). Imports into Archer as a new authoritative source, control procedures, and question library content.



This content is available in English only.



Mappings for PCI DSS to the RSA Archer Control Standard Library are available in the authoritative source content pack.  This content includes questions associated with this authoritative source.


Content Source

The source of this content comes from the PCI Security Standards website.


Licensing Restrictions

The PCI DSS authoritative source content is available with the use of the RSA Archer Policy Program Management, RSA Archer Controls Monitoring Program Management, and/or RSA Archer Authorization and Assessment use cases. No additional license is required.


For More Information

To learn more about the Payment Card Industry Data Security Standard (PCI DSS) Authoritative Source Content:


For Additional Support

To learn more about this content, please contact your Account Rep for additional details. For technical support questions, please open a support case or contact RSA Archer at for more information.