PCI DSS consists of 12 main requirements designed to satisfy a myriad of security objectives. These requirements essentially satisfy what payment brands feel are basic controls for the effective assessment, remediation, and reporting as related to securing sensitive customer information.
Depending on an organization's unique infrastructure and specific environment for cardholder data, certain controls may or may not apply.
