In September 2006 the Payment Card Industry Security Standards Council released Version 1.1 of the Data Security Standard (PIC/DSS) mandating requirements to protect cardholder data. Requirements cover network security, data protection, vulnerability management, access control, monitoring and testing, and information security. Unlike many of the other compliance standards in use today PCI/DSS is explicit in its requirements and this paper identifies the specific requirements affecting network administrators and presents the EventTracker solution for these issues.