Package deal
PCI ISA bundled exams with practice questions correctly answered
PCI ISA Exam preparation questions with correct answers
[Show more]PCI ISA Exam preparation questions with correct answers
[Show more]QSAs must retain work papers for a minimum of _______ years. It is a recommendation for ISAs to do the same. 
3 
 
 
 
According to PCI DSS requirement 1, Firewall and router rule sets need to be reviewed every _____ months. 
6 
 
 
 
 
 
 
00:02 
01:33 
At least ______________ and prior to the annu...
Preview 2 out of 6 pages
Add to cartQSAs must retain work papers for a minimum of _______ years. It is a recommendation for ISAs to do the same. 
3 
 
 
 
According to PCI DSS requirement 1, Firewall and router rule sets need to be reviewed every _____ months. 
6 
 
 
 
 
 
 
00:02 
01:33 
At least ______________ and prior to the annu...
Which of the following is true regarding network segmentation? 
Network Segmentation is not a PCI DSS requirement 
 
 
 
When must critical security patches be installed 
Within 1 month 
 
 
 
 
 
 
00:02 
01:33 
Which statement is true for a merchant using a validated P2PE solution? 
The merchant i...
Preview 1 out of 2 pages
Add to cartWhich of the following is true regarding network segmentation? 
Network Segmentation is not a PCI DSS requirement 
 
 
 
When must critical security patches be installed 
Within 1 month 
 
 
 
 
 
 
00:02 
01:33 
Which statement is true for a merchant using a validated P2PE solution? 
The merchant i...
SAQ-A 
e-commerce or telephone order merchants; processing fully outsourced to validated 3rd party. No processing, transmitting, storing done by merchant 
 
 
 
SAQ-B 
merchants with imprint machines and/or merchant with only standalone dial-out terminals 
 
 
 
 
 
 
00:14 
01:33 
SAQ-B-IP 
Same as...
Preview 2 out of 5 pages
Add to cartSAQ-A 
e-commerce or telephone order merchants; processing fully outsourced to validated 3rd party. No processing, transmitting, storing done by merchant 
 
 
 
SAQ-B 
merchants with imprint machines and/or merchant with only standalone dial-out terminals 
 
 
 
 
 
 
00:14 
01:33 
SAQ-B-IP 
Same as...
For PCI DSS requirement 1, firewall and router rule sets need to be reviewed every _____________ months 
6 months 
 
 
 
Non-console administrator access to any web-based management interfaces must be encrypted with technology such as......... 
HTTPS 
 
 
 
 
 
 
00:08 
01:33 
Requirements 2.2.2 and...
Preview 2 out of 11 pages
Add to cartFor PCI DSS requirement 1, firewall and router rule sets need to be reviewed every _____________ months 
6 months 
 
 
 
Non-console administrator access to any web-based management interfaces must be encrypted with technology such as......... 
HTTPS 
 
 
 
 
 
 
00:08 
01:33 
Requirements 2.2.2 and...
Requirement 4 
Encrypt transmission of cardholder data across open, public networks 
 
 
 
Strong cryptography and Security Protocols are to include the following 
Only trusted keys and certificates are accepted, protocol in use only supports secure versions or configurations, and encryption strengt...
Preview 2 out of 8 pages
Add to cartRequirement 4 
Encrypt transmission of cardholder data across open, public networks 
 
 
 
Strong cryptography and Security Protocols are to include the following 
Only trusted keys and certificates are accepted, protocol in use only supports secure versions or configurations, and encryption strengt...
A Sustainable Compliance Program must: 
Be implemented into Business-as-usual (BAU) activities as part of the organizations overall security strategy. 
 
 
 
True or False: The driving objective behind all PCI DSS compliance activities is to attain a compliant report. 
False ongoing security of card...
Preview 2 out of 7 pages
Add to cartA Sustainable Compliance Program must: 
Be implemented into Business-as-usual (BAU) activities as part of the organizations overall security strategy. 
 
 
 
True or False: The driving objective behind all PCI DSS compliance activities is to attain a compliant report. 
False ongoing security of card...
The payment card brands are responsible for: 
penalty or fee assignment for non-compliance 
 
 
 
Authorization of a transaction usually takes place: 
within one day 
 
 
 
If a suspected card account number passes the Mod 10 test it means: 
it is definitely a valid PAN 
 
 
 
Which of the following...
Preview 2 out of 8 pages
Add to cartThe payment card brands are responsible for: 
penalty or fee assignment for non-compliance 
 
 
 
Authorization of a transaction usually takes place: 
within one day 
 
 
 
If a suspected card account number passes the Mod 10 test it means: 
it is definitely a valid PAN 
 
 
 
Which of the following...
Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.
You can quickly pay through credit card or Stuvia-credit for the summaries. There is no membership needed.
Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!
You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.
Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.
Stuvia is a marketplace, so you are not buying this document from us, but from seller Fordenken. Stuvia facilitates payment to the seller.
No, you only buy these notes for $20.49. You're not tied to anything after your purchase.
4.6 stars on Google & Trustpilot (+1000 reviews)
75057 documents were sold in the last 30 days
Founded in 2010, the go-to place to buy study notes for 14 years now