PCIP - Chapter 3 - PCI DSS Requirement
1 2025/2026 Exam Questions with 100%
Correct Answers | Latest Update
What is Requirement 1 - 🧠ANSWER ✔✔Install and maintain a firewall and
router configuration to protect cardholder data
What does a firewall do? - 🧠ANSWER ✔✔(1) This controls traffic between
an entity's internal networks and untrusted networks, as well as traffic into
and out of sensitive areas such as the entity's cardholder data
environment.
(2) They examine and control all network traffic while blocking
transmissions that do not meet the specified rules that exist within the
configuration settings.
(3) All systems within the cardholder data environment must be protected
from unauthorized access from any untrusted networks, and firewalls play a
key role in providing such protection.
Req. 1.1.1 A formal process for approving and testing all network
connections and change to the firewall and router configurations -
COPYRIGHT©JOSHCLAY 2025/2026. YEAR PUBLISHED 2025. COMPANY REGISTRATION NUMBER: 619652435. TERMS OF USE. PRIVACY 1
STATEMENT. ALL RIGHTS RESERVED
, 🧠ANSWER ✔✔Why? Without approval and testing of changes, records of
changes may not be updated which could lead to inconsistencies between
network documentation and actual configuration.
1.1.2 Have a current network diagram that identifies all connections
between the cardholder data environment and other networks including
wireless networks - 🧠ANSWER ✔✔Why? Without current network
diagrams, devices could be overlooked and be unknowingly left out of the
security controls implemented for PCI DSS and thus be vulnerable to
compromis
1.1.3 Have a current diagram that shows all cardholder data flows across
systems and networks - 🧠ANSWER ✔✔Why? Network and cardholder data
flow diagrams help an organization to understand and keep track of the
scope of their environment, by showing how cardholder data flows across
networks and between individual systems and devices.
1.1.4 Requirements for a firewall at each Internet connection and between
any demilitarized zone and the internal network zone. - 🧠ANSWER
✔✔Why? Using a firewall on every Internet connection coming into (and
out of) the network and between any DMZ and the internal network allows
the organization to monitor and control access and minimizes the chances
COPYRIGHT©JOSHCLAY 2025/2026. YEAR PUBLISHED 2025. COMPANY REGISTRATION NUMBER: 619652435. TERMS OF USE. PRIVACY 2
STATEMENT. ALL RIGHTS RESERVED
1 2025/2026 Exam Questions with 100%
Correct Answers | Latest Update
What is Requirement 1 - 🧠ANSWER ✔✔Install and maintain a firewall and
router configuration to protect cardholder data
What does a firewall do? - 🧠ANSWER ✔✔(1) This controls traffic between
an entity's internal networks and untrusted networks, as well as traffic into
and out of sensitive areas such as the entity's cardholder data
environment.
(2) They examine and control all network traffic while blocking
transmissions that do not meet the specified rules that exist within the
configuration settings.
(3) All systems within the cardholder data environment must be protected
from unauthorized access from any untrusted networks, and firewalls play a
key role in providing such protection.
Req. 1.1.1 A formal process for approving and testing all network
connections and change to the firewall and router configurations -
COPYRIGHT©JOSHCLAY 2025/2026. YEAR PUBLISHED 2025. COMPANY REGISTRATION NUMBER: 619652435. TERMS OF USE. PRIVACY 1
STATEMENT. ALL RIGHTS RESERVED
, 🧠ANSWER ✔✔Why? Without approval and testing of changes, records of
changes may not be updated which could lead to inconsistencies between
network documentation and actual configuration.
1.1.2 Have a current network diagram that identifies all connections
between the cardholder data environment and other networks including
wireless networks - 🧠ANSWER ✔✔Why? Without current network
diagrams, devices could be overlooked and be unknowingly left out of the
security controls implemented for PCI DSS and thus be vulnerable to
compromis
1.1.3 Have a current diagram that shows all cardholder data flows across
systems and networks - 🧠ANSWER ✔✔Why? Network and cardholder data
flow diagrams help an organization to understand and keep track of the
scope of their environment, by showing how cardholder data flows across
networks and between individual systems and devices.
1.1.4 Requirements for a firewall at each Internet connection and between
any demilitarized zone and the internal network zone. - 🧠ANSWER
✔✔Why? Using a firewall on every Internet connection coming into (and
out of) the network and between any DMZ and the internal network allows
the organization to monitor and control access and minimizes the chances
COPYRIGHT©JOSHCLAY 2025/2026. YEAR PUBLISHED 2025. COMPANY REGISTRATION NUMBER: 619652435. TERMS OF USE. PRIVACY 2
STATEMENT. ALL RIGHTS RESERVED
