Question 1

Requirement 1.2.2 discusses changes must be approved and managed in accordance with what requirement regarding change management?

Options :

A : 11.5.1

B : 6.5.1

C : 4.2.3

D : 12.2.1

Answer: B

Question 2

How often should network security control configurations be reviewed

Options :

A : Every year

B : Every 6 months

C : Every month

D : Every 3 months

Answer: B

Question 3

What does ASV stand for?

Options :

A : Applied Security Vendor

B : Applicable Scanning Vendor

C : Accepted Security Vendor

D : Approved Scanning Vendor

Answer: D

Question 4

Which of the following is NOT a principle of the PCI DSS?

Options :

A : Regularly monitoring and testing networks to ensure security controls remain effective

B : Implementing access controls to restrict cardholder data access on a "need-to-know" basis

C : Using proprietary encryption algorithms for securing cardholder data

D : Protecting cardholder data during transmission over open, public networks through strong cryptography

Answer: C

Question 5

Which of the following is NOT considered a key principle of the Payment Card Industry Data Security Standard (PCI DSS)?

Options :

A : Regularly Monitor and Test Networks

B : Ensure Compliance with Industry Regulations

C : Maintain a Vulnerability Management Program

D : Implement Strong Access Control Measures

Answer: B

Smartly Prepare Exam with Free Online PCIP_New_V4 Practice Test