Practice QSA_New Exam Online

Question 1

External ASV scans are required to be performed:

A : Quarterly

B : Monthly

C : Annually

D : Every six months

Answer: A

Question 2

Which of the following types of events is required to be logged?

A : All use of end-user messaging technologies

B : All access to external websites

C : All access to all audit trails

D : All network transmissions

Answer: C

Question 3

PCI-DSS Requirement 12.6 requires personnel to acknowledge at least _______ that they have read and understood the security policy and procedures?

A : Quarterly

B : Annually

C : Once during their employment

D : Every six months

Answer: B

Question 4

When should penetration testing be performed?

A : At least quarterly, and after any change to user access or file access permission

B : At least annually, and after any change to user access permission

C : At least quarterly, and after any significant changes to the network

D : At least annually, and after any significant changes to infrastructure or applications

Answer: D

Question 5

Which of the following can be sampled for testing during a PCI DSS assessment?

A : PCI DSS requirements and testing procedures

B : Compensating controls

C : Business facilities and system components

D : Security policies and procedures

Answer: C

Name:	QSA Assessor New
Exam Code:	QSA_New
Certification:	PCI certification
Vendor:	PCI Security Standards Council
Total Questions:	225
Last Updated:	Apr 23, 2024

PCI Security Standards Council QSA_New