PCI DSS 11.5 – Change detection

PCI DSS 3.0 Section 11.5 says this: “Deploy a change-detection mechanism (for example, file-integrity monitoring tools) to alert personnel to unauthorized modification of critical system files, configuration files, or content files; and configure the software to perform critical file comparisons at least weekly.”

In this circumstance, it’s useful to use a combination of tools, such as that found on our “Regularly Monitor and Test Networks” page, to ensure that alerting and reporting is correctly in place.