Free PCI Security Standards Council QSA_New_V4 Exam Questions

Become PCI Security Standards Council Certified with updated QSA_New_V4 exam questions and correct answers

Page: 1 / 8

Total 40 Questions | Updated On: Jan 16, 2025

Add To Cart

Question 1

Which of the following is true regarding internal vulnerability scans?

A : They must be performed after a significant change.

B : They must be performed by an Approved Scanning Vendor (ASV).

C : They must be performed by QSA personnel.

D : They must be performed at least annually.

Answer: A

Question 2

Which of the following describes "stateful responses" to communication Initiated by a trusted network?

A : Administrative access to respond to requests to change the firewall Is limited to one individual at a time.

B : Active network connections are tracked so that invalid "response" traffic can be identified.

C : A current baseline of application configurations is maintained and any mis-configuration is responded to promptly.

D : Logs of user activity on the firewall are correlated to identify and respond to suspicious behavior.

Answer: B

Question 3

Viewing of audit log files should be limited to?

A : Individuals who performed the logged activity.

B : Individuals with read/write access.

C : Individuals with administrator privileges.

D : Individuals with a job-related need.

Answer: D

Question 4

What do PCI DSS requirements for protecting cryptographic keys include?

A : Public keys must be encrypted with a key-encrypting key.

B : Data-encrypting keys must be stronger than the key-encrypting key that protects it.

C : Private or secret keys must be encrypted, stored within an SCD, or stored as key components.

D : Key-encrypting keys and data-encrypting keys must be assigned to the same key custodian.

Answer: C

Page: 1 / 8

Total 40 Questions | Updated On: Jan 16, 2025

Add To Cart