Looking for some assistance..... Does anyone have an example or can describe how they incorporate PCI requirements in their initial risk and significance assessment? Besides the PCI DSS AOC, is there any other due diligence documents that you review for PCI compliance?
Thanks in advance,
Brian