The RSI security weblog breaks down the actions in some detail, but the method in essence goes such as this: Establish firewalls and router expectations, which set regulations for allowing and denying access to your systems. Firewall configurations needs to be reviewed bi-per year to ensure there won't be any https://www.nathanlabsadvisory.com/blog/nathan/how-to-achieve-pci-dss-compliance-certification-in-the-usa-quickly/
