When dealing with compliance with the Payment Card Industry-Data Security Standard (PCI-DSS) , an organization that shares card holder information with a service provider MUST do which of the following?
A) Perform a service provider PCI-DSS assessment on a yearly basis
B) Validate the service provider's PCI-DSS compliance status on a regular basis
C) Validate that the service providers security policies are in alignment with those of the organization
D) Ensure that the service provider updates and tests its Disaster Recovery Plan (DRP) on a yearly basis
Correct Answer:
Verified
Q303: Which of the following actions will reduce
Q304: The use of private and public encryption
Q305: All of the following items should be
Q306: Which of the following Service Organization Control
Q307: Which of the following is considered the
Q309: A company was ranked as high in
Q310: What is the FIRST step required in
Q311: What is the FIRST step in establishing
Q312: Which of the following is MOST effective
Q313: A security practitioner has just been assigned
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents