PCI QSR Module Questions and Solutions
The Merchant
In your role as a QIR, your primary interaction will be with which payment card payment industry participant?
PCI DSS
The set of requirements that a merchant must adhere to in order to be authorized to accept card card payments is know a...
PCI QSR Module Questions and
Solutions
The Merchant - answer In your role as a QIR, your primary interaction will be with
which payment card payment industry participant?
PCI DSS - answer The set of requirements that a merchant must adhere to in order
to be authorized to accept card card payments is know as the ________.
PCI SSC - answer Which is the independent body providing oversight of PCI
standards?
Merchant - answer The term _________ is used to describe an entity accepting
payment cards for payment during a purchase.
Issuer - answer The term ________ is used to describe an entity that actually
approves the transaction when a purchase is made.
False - answer True of False: The PCI Security Stands Council is responsible for
enforcing the brand compliance programs.
Payment Brands - answer Which entity is responsible for forensic investigations of
account data compromise?
- Approving Scanning Vendors (ASVS) perform external vulnerability scans in
accordance with PCI DSS Requirements 11.2
- All PA-QSAs are quality security assessorts - answer Which statements are true?
Cardholder Data and Sensitive Authentication Data - answer Account Data consists
of ______________ and ______________.
2 - answer How many tracks of payment data are typically on a magnetic strip of a
payment card?
PA-DSS - answer The standard for validating off-the-shelf software involved in
authorization and settlement is:
- PA-QSA
- Merchants
- Resellers and Integrators - answer The Implementation Guide must be supplied to:
- Support customer awareness of the IG
- Ensure you are using the latest IG with updates
, - Train QIR employees in use of the IG
- Follow the IG instructions for installation - answer What are the QIRs
responsibilities with regard to the PA-DSS Implementation Guide (IG)
False - answer True or False: Merchants using a PA-DSS validated payment
applications are automatically in compliance with PCI DSS?
If a QIR employee fails an exam training, the QIR employee must not lead or manage a
Qualified Installation until successfully passing the exam on a future attempt - answer
Which statements are true?
QIR Qualification Requirements - answer PCI SSC Qualified Integrators and
Resellers (QIRs) are companies, organizations or other legal entities that are in
compliance with all QIR company requirements as defined in the:
True - answer True or False: QIR employees are required to have a back checks
such as previous employment history, criminal record, credit history and reference
checks.
Unique per QIR employee and per customer site - answer QIR access credentials
must be:
- Lead QIR Name
- Estimate of work to be performed
- Link to QIR Feedback Form
- Expected duration of the work - answer In preparation for a Qualified Installation,
you should provide a customer with the:
- Document all conditions in Part 3 of the Implementation Statement
- Advice the customer of the issues found - answer You are the Lead QIR at a
customer site. You notice the conditions within the customer's system, but outside of the
cape of your Qualified Installation, that could lead to a breach. What are your
responsibilities?
Yes - answer You are completing a Qualified Installation, the customer wants to
perform some tasks. Is this allowed?
- The QIR instructs the merchant on disabling accounts.
- Unique payment application accounts and passwords for each customer location are
required.
- The merchant is advised of all accounts set up. - answer When a QIR has access
into a customer's system to provide ongoing support:
- The access must be deactivated immediately after use.
- Two-factor authentication must be used.
- A secure connection should be used.
The benefits of buying summaries with Stuvia:
Guaranteed quality through customer reviews
Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.
Quick and easy check-out
You can quickly pay through credit card or Stuvia-credit for the summaries. There is no membership needed.
Focus on what matters
Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!
Frequently asked questions
What do I get when I buy this document?
You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.
Satisfaction guarantee: how does it work?
Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.
Who am I buying these notes from?
Stuvia is a marketplace, so you are not buying this document from us, but from seller Pogba119. Stuvia facilitates payment to the seller.
Will I be stuck with a subscription?
No, you only buy these notes for $12.49. You're not tied to anything after your purchase.