PCI-DSS
PCI-DSS 4.0 Penetration Testing: Scoping, Methodology, and What Assessors Actually Check
PCI-DSS 4.0 made penetration testing requirements significantly more specific than the previous version. Requirement 11.4 now mandates penetration testing methodology documentation, explicit segmentation testing, and application-layer testing — not just network-layer. If your last penetration test was a generic external scan with a summary report, you're probably