PCI Compliance Quiz 2018
Please complete the required quiz for the Department of Education's PCI compliance requirement in the year 2018.
- 1.Please check all that apply: How do I protect cardholder data?
- A.
Credit card receipts must only show the last 4 digits
- B.
Have security policies and procedures in place
- C.
Test the system with a live credit card (PAN)
- D.
Limit this to only those who need this information to do their jobs
- 2.Computers are to be locked when you are away from your work area?
- A.
True
- B.
False
- 3.Please check all that apply: Onsite personnel and visitors must:
- A.
Be identified and given a badge that distinguishes them from onsite personnel
- B.
Use of a visitor badge or state ID does NOT permit unescorted access to physical locations where Card Holder Data (CHD) is processed
- C.
Visitors or onsite employees ARE able to be unescorted in physical locations where Card Holder Data (CHD) is processed
- D.
Visitors or onsite employees are NOT required to have an identifying badge
- 4.Storage containers used for materials that are to be destroyed do not need to be secured (ex. not locked)?
- A.
True
- B.
False
- 5.Personnel who have specific roles with EIS or Card Holder Data are required to participate in an annual training for PCI compliance?
- A.
True
- B.
False
- 6.How many requirements does PCI DSS have?
- A.
10
- B.
12
- C.
24
- D.
9
- 7.Please check all that apply; Best Practices for Credit Card Processing include;
- A.
Segregate duties when possible
- B.
Remember to never store payment card data in any form
- C.
Only allow employees who have a legitimate business need to access cardholder information
- D.
Each user needs their own user ID coupled with a secure password that is changed regularly
- E.
Restrict physical access to areas where credit card information is handled and stored
- 8.A potential security breach might include a User ID being given out or stolen.
- A.
True
- B.
False
Questions: 10 | Attempts: 193 | Last updated: Mar 22, 2022
-
Sample QuestionThe Privacy Rule and the HITECH Act gives patients more control over who, how, and when PHI is used.
Questions: 10 | Attempts: 104 | Last updated: Mar 22, 2022
-
Sample QuestionIf construction employees may be exposed to poison ivy on a jobsite, the employees who may be exposed must be instructed regarding the potential hazards of poison ivy, how to avoid injury, and the first aid procedures to be used if an employee is exposed. True or False
Questions: 20 | Attempts: 159 | Last updated: Mar 19, 2022
-
Sample QuestionWhich one of the following is an example of phishing?
Back to top