8 Properly Train and Monitor Administrators

It is the responsibility of the owner of the client system accessing OPERA Cloud Distribution APIs to institute proper personnel management techniques for allowing administration user access to cardholder data, site data, and so on. For example, the client system owner controls whether each individual administration user can see full credit card Primary Account Numbers (PAN) or only the last four digits of the PAN.

In most systems, a security breach is often the result of unethical personnel, so pay special attention to whom you trust with admin access and whom you allow to view fully decrypted and unmasked payment information.

When administering the OPERA Cloud Distribution services, Oracle Cloud Operations always use multi-factor authentication (MFA) using physical tokens to access production instances of OPERA Cloud Distribution.