PCI ISA Exam (60 Question) 2023

Which of the following is true regarding network segmentation? - Network Segmentation is not a PCI DSS requirement When critical security patches must be installed - Within 1 month Which statement is true for a merchant using a validated P2PE solution? - The merchant is responsible for ensuring their own PCI compliance Which of the following applications may go through a PA-DSS review? - Commercial payment application without much customization Strong access control lists include: - Don't allow risky protocols such as FTP or Telnet. Manufacturers of PIN Entry devices must adhere to which standard? - PCI PTS PCI PA DSS standard covers which of the following - Payment applications that store, process or transmit cardholder data as part of authorization and or settlement