Under active development Content is continuously updated and improved

TPM-03Forensic Investigations

>Control Description

Organization enables procedures to conduct a forensic investigation in the event that a hosted merchant or service provider is compromised.

Theme

Process

Type

Preventive

Policy/Standard

Vendor Information Security Policy

>Implementation Guidance

1. Ensure there is documented process for conducting a forensic investigation in the event when a hosted merchant or service provider is compromised. 2. Ensure documentation for the same needs to be maintained for tracking purposes and corrective actions.

>Testing Procedure

1. Inspect documentation to determine whether procedures to conduct a forensic investigation in the event when a hosted merchant or service provider is compromised, are defined. 2. For sample investigations validate whether appropriate documentation is retained.

>Audit Artifacts

E-TPM-05
E-TPM-06

>Framework Mappings

Cross-framework mappings provided by Adobe CCF Open Source under Creative Commons License.

Ask AI

Configure your API key to use AI features.