PCI fundamentals Exam Questions with Correct Answers ASV - ANSWER-Approved Scanning Vendor PCI - ANSWER-Payment Card Industry PTS - ANSWER-PIN Transaction Security (device) QSA - ANSWER-Qualified Security Assessor ROC - ANSWER-Report on Compilance ROV - ANSWER-Report on Validation QIR - ANSWER-Qualified Integrator Reseller Which entity is responsible for developing and enforcing compliance programs? - ANSWER-Payment Brands Which entity is responsible for forensic investigations of account data compromise? - ANSWER-Payment Brands Which entity is response to Accept validation documentation from QSAs, PA-QSAs and ASVs - ANSWER-Payment Brands Which entity is response Endorse QSA, PA-QSA and ASV company qualification criteria - ANSWER-Payment Brands Merchant obligations may include submitting their compliance status to multiple entities. True or false? - ANSWER-True The decision about a merchant's level is made by the - ANSWER-Merchant's aquirer Level 1 and 2 merchants must include ___________ as part of their PCI DSS compliance validation reporting process? - ANSWER-Level 1 and 2 merchants need quarterly external vulnerability scans to be performed by an ASV. Level 2 merchants may use SAQs to validate compliance. SAQ - ANSWER-Self-assessment Questionaire Type of SAQ? Card-Not-Present (e-commerce or MO/TO) merchants, all cardholder data functions outsourced to PCI DSS compliant service providers. Not applicable to face-to-face channels. - ANSWER-A Type of SAQ? E-commerce merchants who outsource all payment processing to PCI DSS validated third parties, and who have a website(s) that doesn't directly receive cardholder data but that can impact the security of the payment transaction. No electronic storage, processing, or transmission of any cardholder data on the merchant's systems or premises. Applicable only to e-commerce channels. - ANSWER-A-EP Type of SAQ? Imprint-only merchants with no electronic cardholder data storage, or standalone, dial-out terminal merchants with no electronic cardholder data storage. Not applicable to e-commerce channels. - ANSWER-B Type of SAQ? Merchants using only stand-alone, PTS-approved payment terminals with an IP connection to the payment processor, with no electronic cardholder data storage. Not applicable to e-commerce channels. - ANSWER-B-IP Type of SAQ? Merchants with segmented payment application systems connected to the Internet, with no electronic cardholder data storage. Not applicable to e-commerce channels. - ANSWER-C Type of SAQ? Merchants using only web-based virtual payment terminals, with no electronic cardholder data storage. Not applicable to e-commerce channels. - ANSWER-C-VT TYPE of SAQ? All merchants not included in the descriptions for other SAQ types. - ANSWER-D for Merchants Type SAQ? All service providers identified by a payment brand as eligible to complete a SAQ - ANSWER-D for providers Type of SAQ? Merchants who have implemented a validated Point-to-Point Encryption Solution that is listed on the PCI SSC website, with no electronic cardholder data storage. Not applicable to e-commerce channels. - ANSWER-P2Pe Does PA-DSS apply to Custom payment applications endorsed by the PCI SSC. - ANSWER-False
The benefits of buying summaries with Stuvia:
Guaranteed quality through customer reviews
Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.
Quick and easy check-out
You can quickly pay through credit card or Stuvia-credit for the summaries. There is no membership needed.
Focus on what matters
Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!
Frequently asked questions
What do I get when I buy this document?
You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.
Satisfaction guarantee: how does it work?
Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.
Who am I buying these notes from?
Stuvia is a marketplace, so you are not buying this document from us, but from seller DoctorReinhad. Stuvia facilitates payment to the seller.
Will I be stuck with a subscription?
No, you only buy these notes for $9.99. You're not tied to anything after your purchase.
