Ctrl + K

Appendix E: Sample Templates to Support Customized Approach

Sample templates to support the Customized Approach (the Sample Controls Matrix Template and Sample Targeted Risk Analysis Template) provide examples of formats that could be used by entities when documenting their Customized Approach. While it is not required that entities follow the specific formats provided in these sample templates, the entity’s control matrix and targeted risk analysis must include all the information as defined in these templates.

These sample templates are available on the PCI SSC website.

Your perspective on this PCI DSS requirement matters! Share your implementation experiences, challenges, or questions below. Your insights help other organizations improve their compliance journey and build a stronger security community.Comment Policy

Please enable JavaScript to view the comments powered by Disqus.Alternatively, you can view comments at our Disqus forum.

Link copied to clipboard!