Download PCIP Practice Questions and Answers (Verified Answers) Latest Update 2023 and more Exams Nursing in PDF only on Docsity! PCIP Practice Questions and Answers (Verified Answers) Latest Update 2023 Which of the below functions is associated with Acquirers? A. Provide settlement services to a merchant B. Provide authorization services to a merchant C. Provide clearing services to a merchant D. All of the options - Correct Answer : D Which of the following entities will actually approve a purchase? A. Non-Issuing Merchant Bank B. Issuing Bank C. Payment Transaction Gateway PCIP Practice Questions and Answers (Verified Answers) Latest Update 2023 D. Acquiring Bank - Correct Answer : B Which of the following lists the correct "order" for the flow of a payment card transaction? A. Clearing, Settlement, Authorization B. Clearing, Authorization, Settlement C. Authorization, Clearing, Settlement D. Authorization, Settlement, Clearing - Correct Answer : C Service Providers include companies which_____________or could______________the security of cardholder data. PCIP Practice Questions and Answers (Verified Answers) Latest Update 2023 D. Truncation, Scrambling, or Encrypting - Correct Answer : C Requirement 2.2.2 states "Enable only necessary and secure services, protocols, daemons, etc., as required for the function of the system". Which of the following is considered secure? A. SSH B. RLogon C. Telnet D. FTP - Correct Answer : A When scoping an environment for a PCI DSS assessment, it is important to identify _______________. PCIP Practice Questions and Answers (Verified Answers) Latest Update 2023 A. All flows of cardholder data B. All of the options C. Components that store cardholder data D. Business facilities involved in processing transactions - Correct Answer : B QUESTION 21 Merchants involved with only e-commerce transactions that are completely outsourced to a PCI DSS compliant service provider would use which SAQ? A. SAQ C/VT B. SAQ B PCIP Practice Questions and Answers (Verified Answers) Latest Update 2023 C. SAQ D D. SAQ A - Correct Answer : D Imprint-Only Merchants with no electronic storage of cardholder data would use which SAQ? A. SAQ C/VT B. SAQ B C. SAQ A D. SAQ D - Correct Answer : B When a Service Provider has been defined by a payment brand as eligible to complete a SAQ, which SAQ is PCIP Practice Questions and Answers (Verified Answers) Latest Update 2023 Encrypting account data at the point of capture is one way an entity involved in payment card processing via mobile devices can actively help in controlling risks to the security of cardholder data. A. True B. False - Correct Answer : A In order to be considered a compensating control, which of the following must exist? A. A legitimate technical constraint and a documented business constraint. B. A legitimate technical constraint. C. A legitimate technical constraint of a documented business constraint. PCIP Practice Questions and Answers (Verified Answers) Latest Update 2023 D. A documented business constraint. - Correct Answer : C PCI DSS Requirement 1 A. Install and maintain a firewall configuration to protect cardholder data B. Do not use vendor supplied defaults for system passwords and other security parameters C. Protect stored cardholder data by enacting a formal data retention policy and implement secure deletion methods D. Protected Cardholder Data during transmission over the internet, wireless networks or other open access networks or systems (GSM, GPRS, etc.) - Correct Answer : A PCIP Practice Questions and Answers (Verified Answers) Latest Update 2023 PCI DSS Requirement 2 A. Install and maintain a firewall configuration to protect cardholder data B. Do not use vendor supplied defaults for system passwords and other security parameters C. Protect stored cardholder data by enacting a formal data retention policy and implement secure deletion methods D. Protected Cardholder Data during transmission over the internet, wireless networks or other open access networks or systems (GSM, GPRS, etc.) - Correct Answer : B PCI DSS Requirement 3 PCIP Practice Questions and Answers (Verified Answers) Latest Update 2023 networks or systems (GSM, GPRS, etc.) C. Protect stored cardholder data by enacting a formal data retention policy and implement secure deletion methods D. Do not use vendor supplied defaults for system passwords and other security parameters - Correct Answer : A PCI DSS Requirement 6 A. Use and regularly update anti-virus software or programs B. Develop and maintain secure systems and applications C. Assign a unique ID to each person with computer access PCIP Practice Questions and Answers (Verified Answers) Latest Update 2023 D. Restrict access to cardholder data by business need to know - Correct Answer : B PCI DSS Requirement 8 A. Identify and authenticate access to system components B. Restrict physical access to cardholder data C. Develop and maintain secure systems and applications D. Use and regularly update anti-virus software or programs -