I am overlooking the new PCI SAQ C that just came out. Looking at the document that is titled " Which SAQ Best Applies to My Environment?" I noticed that for SAQ C, these two requirements are listed.
Payment aplication ssytem/internet device not connected to any other systems
Single store location
The single store location requirement is new to this SAQ C. Can anybody provide me with specific answers to these two requirements?
I have five store locations, does this mean I have to fill out SAQ D now?
My POS systems are on the same LAN as the rest of my internet connected computers. Does this mean I have to segment them somehow? If I do, how do I do that while still enabling remote management such as group pollicy and anti virus?