Which of these is a recommendation of the PCI DSS standards to protect a network from malicious traffic? CO3a.Tracking third-party vendors access to networks.b.Locking down a network so no traffic goes in or out.c.The implementation of multiple security questions.d.Installing hardware and software firewalls.

Who do PCI DSS requirements apply to?       CO3a.Any business that processes credit card paymentsb.Only the major credit card companiesc.Online retailers.d.Retailers that use credit card terminals

In order to be compliant with Payment Card Industry Data Security Standard (PCI DSS), one of the control objectives that should be included in one's security policies and controls is building and maintaining a secure network. The reason for this is as follows:to have a specific firewall, system password, and other security network layer controlsto specify how to maintain secure systems and applications, including the required use of antivirus softwareto require monitoring access to cardholder and periodic penetration testing of the networkto require that security policies reflect the PCI DSS requirements, and that these policies are kept current and an awareness program is implemented

Question 1In the Payment Card Industry Data Security Standard (PCI DSS), what are the requirements for the “regularly monitor and test networks” objective? Select all that apply1 pointEncrypt the transmission of cardholder data across open public networksDevelop and maintain secure systems and applicationsRegularly test security systems and processesTrack and monitor all access to network resources and cardholder data

Which of the following applies to software applications that are considered payment applications by PCI Security Standards Council?         CO2a.PCI PEDb.PCI PA-DSSc.PCI- AEDd.PCI PA-ESSCLEAR MY CHOICE

Who is liable to the PCI DSS requirements?Select one:Online retailers.Only the major credit card companiesAny business that processes credit card paymentsRetailers that use credit card terminals