What other security requirements does my WordPress website need

What other security website requirements does my WordPress website need in order to use this plugin?

I heard that you have to be PCI compliant if you want to use escrow on your website.

Are you required to have these things to run this plugin?
Firewall configuration to protect cardholder data
Do not use vendor-supplied defaults for system passwords and other security parameters
Cardholder data stored and protected
Encrypted transmission of cardholder data across open, public networks
Regularly updated anti-virus software
Maintain secure systems and applications
Restricted access to cardholder data by business
Unique ID assigned to each person with computer access
Restricted physical access to cardholder data
All access to network resources and cardholder data tracked and monitored
Security systems and processes regularly tested
Information security policy maintained

The page I need help with: [log in to see the link]