Canonical FrameworkCompliance & AuditLevel 1

PCI DSS v4.0.1

PCI DSS control-mapping starter for environments that store, process, or transmit CHD or SAD. It references the 12 requirement families and provides configurable gateway controls or evidence fields for relevant segmentation, encryption, change, and logging topics; infrastructure testing remains external.

This template is a configurable starting point and control mapping. It is not certification, legal advice, or a guarantee of compliance; validate it against your obligations and environment before use.

Regions

Global

References

3 references

Mapped Control Domains

7 mapped domains

Deployment

Regulated SaaS, Financial (Cache Disabled), Private Cloud

Referenced Frameworks, Standards & Obligations

PCI DSS v4.0.1PCI Software Security Framework (Secure Software Standard / Secure SLC Standard)PCI SSC guidance on scoping and segmentation

Mapped Control Domains

Data Encryption
Access Control
Audit Logging
Vulnerability Management
Network Security
Penetration Testing
Change Management

Deployment profiles

Regulated SaaS
Financial (Cache Disabled)
Private Cloud

Get started in 3 steps

1

Open the template

Open the catalog entry in the Keeptrusts console and review its included controls, references, and deployment metadata.

2

Adapt the configuration

Use the template as a starting point, then adjust relevant policies, thresholds, routing, and review settings for your requirements.

3

Validate before rollout

Test every outcome you configure—such as allow, redact, block, or operator review—before deploying through a supported gateway workflow.