Special Summer Sale 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: save70

QSA_New_V4 Exam Questions Tutorials

Page: 6 / 6
Total 75 questions

Qualified Security Assessor V4 Exam Questions and Answers

Question 21

Which scenario meets PCI DSS requirements for critical systems to have correct and consistent time?

Options:

A.

Each internal system is configured to be its own time server.

B.

Access to time configuration settings is available to all users of the system.

C.

Central time servers receive time signals from specific, approved external sources.

D.

Each internal system peers directly with an external source to ensure accuracy of time updates.

Question 22

Where an entity under assessment is using the customized approach, which of the following steps is the responsibility of the assessor?

Options:

A.

Monitor the control.

B.

Derive testing procedures and document them in Appendix E of the ROC.

C.

Document and maintain evidence about each customized control as defined in Appendix E of PCI DSS.

D.

Perform the targeted risk analysis as per PCI DSS requirement 12.3.2.

Page: 6 / 6
Total 75 questions