PCI DSS 4.0

Information Security Financial Services

Any organization that stores, processes, or transmits cardholder data must comply with PCI DSS, and version 4.0 introduced significant new requirements with final deadlines now in effect. This assessment covers all 12 PCI DSS requirements across network security, access controls, vulnerability management, encryption, monitoring, and security testing — including the v4.0 additions for targeted risk analysis, script management (Requirements 6.4.3 and 11.6.1), and enhanced authentication. It addresses the specific obligations for merchants, service providers, and organizations operating e-commerce environments.

Domains

Questions

~52 min

Estimated Time

What You'll Be Assessed On

Scope & Entity Classification Applicability Check

3 questions

Req 1 — Network Security Controls

4 questions

Req 2 — Secure Configurations

3 questions

Req 3 — Protect Stored Account Data

5 questions

Req 4 — Protect Data in Transit

3 questions

Req 5 — Anti-Malware

3 questions

Req 6 — Secure Systems & Software

4 questions

Req 7 & 8 — Access Control & Authentication

5 questions

Req 9 — Physical Access

3 questions

Req 10 — Logging & Monitoring

4 questions

Req 11 — Security Testing

4 questions

Req 12 — Governance & Security Policy

5 questions

Secure Software Development

3 questions

E-Commerce & Payment Page Security

3 questions

Step-by-Step

Answer questions one domain at a time with progress tracking.

Instant Scoring

Get a weighted maturity score and per-domain breakdown immediately.

Actionable Roadmap

Receive a phased remediation plan tailored to your results.

Takes approximately 52 minutes to complete.