PCI SSC Related Exams
QSA_New_V4 Exam

According to Requirement 1, what is the purpose of “Network Security Controls"?
A retail merchant has a server room containing systems that store encrypted PAN data. The merchant has implemented a badge access-control system that identifies who entered and exited the room, on what date, and at what time. There are no video cameras located in the server room. Based on this information, which statement is true regarding PCI DSS physical security requirements?