New Year Special 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: save70

Free and Premium PCI SSC CPSA Dumps Questions Answers

Page: 1 / 2
Total 50 questions

Card Production Security Assessor (CPSA)QualificationExam Questions and Answers

Question 1

During an assessment you walk the perimeter of the building with a guard you find an emergency exit door from the facility and ask the guard what is on the other side. The guard can’t remember, and so uses their assigned, secure key to open the door and show you a corridor within the facility. What most concerns you about the situation?

Options:

A.

The exit door should not lead into the facility

B.

The exit door should not be capable of being opened from the outside

C.

The guard should not have forgotten where the door leads to

D.

The guard should have sought permission from their manager before opening the door

Buy Now
Question 2

A vendor discovers that a recent shipment of cards is missing a set. Which of the following responses would you expect in a compliant organization?

Options:

A.

An immediate call is made to the issuer and the VPA who, between them, contact law enforcement and put together a joint statement

B.

The head of security initiates a meeting, and once the VPA approves the messaging, law enforcement is notified in two days

C.

A report is requested by the issuer, the vendor sends it to them, and the issuer handles the incident with the local police

D.

After an incident review, the VPA, issuer and law enforcement are all notified within 24 hours

Question 3

Which of the following must be used by the vendor to protect doors that provide access to buildings containing air conditioning equipment?

Options:

A.

Security tape that will leave an observable trace each time a door is opened

B.

Electrical contacts that log each open and close event to a secure system memory

C.

Magnetic contacts that are permanently alarmed and that are connected to the security control-room panels

D.

Physical locks with a limited set of keys under constant supervision by a guard in the security control-room

Question 4

A vendor wants to know if they will be penalized if their vault is not compliant. Who should they ask?

Options:

A.

PCI SSC

B.

Assessor

C.

Issuing banks

D.

Payment brands

Question 5

During an assessment you ask to see employee records for employees with access to the HSA. The records include information about the screening process, including background information from the employee application process. The oldest background Information that is available is for an employee that left the vendor (terminated their contract) one year previously. You note this as non-compliant, why?

Options:

A.

Employee information, including background checks, must be stored for at least seven years

B.

Employee information must be securely destroyed (e.g. securely wiped) within 2 years (after termination of contract)

C.

The vendor must retain the background information for at least 18 months after termination of contract

D.

The vendor must only retain background information for all current employees, not for those that have been terminated

Question 6

When must HSA motion detectors generate an alarm event?

Options:

A.

Each time movement is detected

B.

Each time movement is detected outside of regular business hours

C.

Each time movement is detected and the access-control system indicates the room is occupied

D.

Each time movement is detected and the access-control system indicates the room is not occupied

Question 7

In which of the following locations must the CCTV and access control servers be located?

Options:

A.

Within the Security Control Room (SCR)

B.

Within a room in the HSA with security controls equivalent to the SCR applied

C.

Within the SCR or a room with equivalent security

D.

Within the secure server room inside of the HSA

Exam Detail
Vendor: PCI SSC
Certification: CPSA Qualification
Exam Code: CPSA
Last Update: Dec 26, 2024
CPSA Question Answers
Page: 1 / 2
Total 50 questions