100% satisfaction guarantee Immediately available after payment Both online and in PDF No strings attached
logo-home
Previously searched by you
Previously searched by you
logo
PCIP All Answers Correct $9.49   Add to cart
Quickly navigate to
Preview
  2.  
  3. PCIP
  4.  
  5. PCIP

Exam (elaborations)

PCIP All Answers Correct
 2 views  0 purchase
  • Course
  • PCIP
  • Institution
  • PCIP

PCIP All Answers Correct Requirement 1 Ans- Install and maintain a firewall configuration to protect cardholder data Requirement 2 Ans- Do not use vendor supplied defaults for system passwords and other security parameters Requirement 3 Ans- Protect stored cardholder data by enacting a formal ...

[Show more]

Preview 2 out of 12  pages

Document information

  • March 27, 2023
  • 12
  • 2022/2023
  • Exam (elaborations)
  • Questions & answers

Subjects

  • pcip all answers correct

Written for

  • PCIP
All documents for this subject (584)

Seller

avatar-seller
CertifiedGrades

Reviews received

Content preview

PCIP All Answers Correct
Requirement 1 Ans- Install and maintain a firewall configuration to protect cardholder data



Requirement 2 Ans- Do not use vendor supplied defaults for system passwords and other security
parameters



Requirement 3 Ans- Protect stored cardholder data by enacting a formal data retention policy and
implement secure deletion methods



Requirement 4 Ans- Encrypt transmission of cardholder data across open, public networks



Requirement 5 Ans- Protect all systems against malware and regularly update anti-virus software or
programs



Requirement 6 Ans- Develop and maintain secure systems and applications



Requirement 7 Ans- Restrict access to cardholder data by business need to know



Requirement 8 Ans- Identify and authenticate access to system components



Requirement 9 Ans- Restrict physical access to cardholder data



Requirement 10 Ans- Track and monitor all access to network resources and cardholder data



Requirement 11 Ans- Regularly test security systems and processes



Requirement 12 Ans- Maintain a policy that addresses information security for all personnel



Appendix A1 Ans- Shared hosting providers must protect the cardholder data environment

, Appendix A2 Ans- Additional PCI DSS Requirements for Entities using SSL/early TLS



Appendix A3 Ans- Designated Entities Supplemental Validation (DESV)



Compensating Controls Ans- 1- Meet the intent and rigor of the original PCI requirement

2- Sufficiently offset the risk that the original PCI DSS requirement was designed to defend against

3- Be "above and beyond" other PCI DSS requirements (i.e., not simply in compliance with other
requirements)

4- Be commensurate with additional risk imposed by not adhering to original requirement



Compensating Controls - Ans- To consider Compensating Controls, one of the following must exist that
precludes implementing the stated control:

1- Legitimate Technical Constraint

2- Documented Business Constraint



Compensating Controls : Ans- Existing PCI DSS requirements CANNOT be considered as compensating
controls if they are already required for the



Compensating Controls ... Ans- Existing PCI DSS requirements may be combined with new controls to
become a compensating control



SAQs Ans- is a validation tool intended to assist merchants and service providers in self-evaluating their
compliance with the PCI DSS



SAQ A Ans- Card-Not-Present (e-commerce or MO/TO) merchants, all cardholder data functions
outsourced to PCI DSS compliant service providers.

Not applicable to face-to-face channels.



SAQ A-EP Ans- E-commerce merchants who outsource all payment processing to PCI DSS validated third
parties, and who have a website(s) that doesn't directly receive cardholder data but that can impact the

The benefits of buying summaries with Stuvia:

Guaranteed quality through customer reviews

Guaranteed quality through customer reviews

Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.

Quick and easy check-out

Quick and easy check-out

You can quickly pay through credit card or Stuvia-credit for the summaries. There is no membership needed.

Focus on what matters

Focus on what matters

Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!

Frequently asked questions

What do I get when I buy this document?

You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.

Satisfaction guarantee: how does it work?

Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.

Who am I buying these notes from?

Stuvia is a marketplace, so you are not buying this document from us, but from seller CertifiedGrades. Stuvia facilitates payment to the seller.

Will I be stuck with a subscription?

No, you only buy these notes for $9.49. You're not tied to anything after your purchase.

Can Stuvia be trusted?

4.6 stars on Google & Trustpilot (+1000 reviews)

81113 documents were sold in the last 30 days

Founded in 2010, the go-to place to buy study notes for 14 years now

Start selling
$9.49
  • (0)
  Add to cart