PCI Compliance Quiz 2018

8 Questions | Total Attempts: 81

SettingsSettingsSettings
Please wait...
PCI Compliance Quiz 2018

Please complete the required quiz for the Department of Education's PCI compliance requirement in the year 2018.


Questions and Answers
  • 1. 
    Please check all that apply: How do I protect cardholder data?
    • A. 

      Credit card receipts must only show the last 4 digits

    • B. 

      Have security policies and procedures in place

    • C. 

      Test the system with a live credit card (PAN)

    • D. 

      Limit this to only those who need this information to do their jobs

  • 2. 
    Computers are to be locked when you are away from your work area?
    • A. 

      True

    • B. 

      False

  • 3. 
    Please check all that apply: Onsite personnel and visitors must:
    • A. 

      Be identified and given a badge that distinguishes them from onsite personnel

    • B. 

      Use of a visitor badge or state ID does NOT permit unescorted access to physical locations where Card Holder Data (CHD) is processed

    • C. 

      Visitors or onsite employees ARE able to be unescorted in physical locations where Card Holder Data (CHD) is processed

    • D. 

      Visitors or onsite employees are NOT required to have an identifying badge

  • 4. 
    Storage containers used for materials that are to be destroyed do not need to be secured (ex. not locked)?
    • A. 

      True

    • B. 

      False

  • 5. 
    Personnel who have specific roles with EIS or Card Holder Data are required to participate in an annual training for PCI compliance?
    • A. 

      True

    • B. 

      False

  • 6. 
    How many requirements does PCI DSS have?
    • A. 

      10

    • B. 

      12

    • C. 

      24

    • D. 

      9

  • 7. 
    Please check all that apply; Best Practices for Credit Card Processing include;
    • A. 

      Segregate duties when possible

    • B. 

      Remember to never store payment card data in any form

    • C. 

      Only allow employees who have a legitimate business need to access cardholder information

    • D. 

      Each user needs their own user ID coupled with a secure password that is changed regularly

    • E. 

      Restrict physical access to areas where credit card information is handled and stored

  • 8. 
    A potential security breach might include a User ID being given out or stolen.
    • A. 

      True

    • B. 

      False

Back to Top Back to top