PCI DSS Exam

1.

1 point

If I'm accept card payments face-to-face, using a stand alone dial-out POS terminal with no electronic account data storage. Which SAQ am I?

SAQ A

SAQ P2P

SAQ C

SAQ B

2.

1 point

Who is responsible for the annual PCI program charge?

Panoptic Security

Sysnet Global Solutions

The credit card processor

The bank

3.

1 point

How many phases does payment card processing take place in?

3

2

4

1

4.

1 point

Select two benefits of being PCI DSS compliant.

Protect business reputation

You get a certificate to display on your wall

You completed a tick box excersize

Protection from financial losses if compromised

5.

1 point

Do you provide a promo code for the scanning sevice?

Yes

No

6.

1 point

How much does a scan subscription cost annually?

$58.99

$55.00

$60.00

$59.00

7.

1 point

If I'm accept card payments face-to-face, using a POS terminal connected to the internet with no electronic account data storage. Which SAQ am I?

SAQ C

SAQ B

SAQ C-VT

SAQ D

8.

1 point

I accept less than 1 million face-to-face (F2F) and 20,000 ecommerce transactions annually. What PCI level am I?

PCI Level 1

PCI Level 2

PCI Level 3

PCI Level 4

9.

1 point

If my card machine is connected to the telephone line, I have a scan requirement, right?

True

False

10.

1 point

Who are responsible for the management and development of the PCI standards?

The card schemes

PCI Security Standards Council

VISA

MasterCard

11.

1 point

I'm PCI DSS Level 1, is it true I have to engage with a Qualified Security Assessor?

True

False

12.

1 point

Which of the below two do Sysnet Global Solutions specialize in...

QSA services

ASV services

IRS services

Data Protection services

13.

1 point

I use a card machine connected to the telephone line. Which of the below am I?

Virtual Terminal

GPRS Terminal

POS terminal connected to the internet

Stand alone dial-out POS terminal

14.

1 point

Should you transfer a merchant to a level 2 agent (if available) "live" due to a scan failure.

Yes

No

15.

1 point

Authorization is when the issuing bank approves the transaction amount.

True

False

16.

1 point

PCI DSS stands for...

Plastic Card Industry Security Service Solution

Payment Card Industry Data Security Standard

Payment Card Industry Data Security Service

Process Cards In Detailed Security Solutions

17.

1 point

PCI scanning applies to two of the below...

Merchant uses a POS connected to the internet

Merchant uses a dial-out POS terminal

Merchant uses an imprint machine

Merchant uses an Integrated POS

18.

1 point

What are the phases of payment card processing?

Authorize and Settle

Processing batch files

Authorization and Settlment

Settlement and Authorization

19.

1 point

A PCI scan normally lasts...

60 minutes

60 - 90 minutes

90 minutes

90 - 120 minutes

20.

1 point

I log onto a web enabled terminal solution and process payments through a secure payment gateway. Which of the below apply to me?

Ecommerce

Imprint

Virtual Terminal

Integrated POS

21.

1 point

Select the appropriate PCI Levels.

PCI Level 1

PCI Level 3

PCI Level 2

PCI Level 6

PCI Level 5

PCI Level 4

PCI Level 7

22.

1 point

SAQ A normally applies to...

Ecommerce merchants

Face-to-face merchants

Merchants storing cardholder data electronically

Large merchants only

23.

1 point

If a call is unrelated to PCI DSS (i.e. POS query, billing etc.) should the call be transferred through to the client customer care desk?

Yes

No

24.

1 point

How many SAQ's are there?

1

4

5

6

25.

1 point

What should you do in the event of a scan failure?

Raise a case and issue the merchant with their case number

Log the call and issue the call log number

Ask a more experienced colleague to take the call

Consult with your supervisor

26.

1 point

What is the current version of the PCI DSS?

v2.0

v1.0

v1.1

v1.2

27.

1 point

What is the goal of the PCI DSS?

To protect money

To reduce payment card fraud via it's exposure

To make revenue and educate

To encourage data protection

28.

1 point

The PCI DSS is the _______ ________ ______ for payment card acceptance.

Industry Service Security

Industry Security Solution

Industry Standard Security

Industry Security Standard

29.

1 point

Settlement is when the processor settles the transaction total to the processors account

True

False

30.

1 point

I used an IP enabled POS terminal. Which of the below am I?

Stand alone dial-out POS terminal

Virtual Terminal

POS Connected to the Internet

Imprint Machine

31.

1 point

I accept 30,000 ecommerce transactions annually, what PCI level am I?

PCI Level 1

PCI Level 2

PCI Level 3

PCI Level 4

32.

1 point

The best known payment card associations are...

MasterCard and VISA

MasterCard, VISA and American Express

MasterCard, VISA, American Express, Discover

MasterCard, VISA, American Express, Discover and JCB

33.

1 point

How can a merchant obtain their external facing IP address?

From my documents

From their desktop

www.whatsmyip.org

From their personal computer

34.

1 point

Which of the following reports do Compliance Analysts review?

Executive Report

PCI Report

Technical Report

Vulnerability Technicality Report

35.

1 point

How many requirements form the PCI DSS?

6 Requirements

8 Requirements

10 Requirements

12 Requirements

37.

1 point

The purpose of the Self-Assessment Questionnaire (SAQ) is to analyse and address areas which may be a potential vulnerability to the ______ _______ _________

Merchant services provider

Payment card processor

Cardholder data environment

Merchant services bank

38.

1 point

What year was the PCI SSC established?

2001

2010

2003

2006

39.

1 point

If a merchant fails to validate their PCI compliance within 60 days, they are subject to a monthly...

Non-Validation fine

Non-Compliance Charge

Inactivity Charge

Failed Fine

40.

1 point

The term acquirer indicates...

indicates the institution has the ability to acquire credit and debit card payments

The card processor has acquired a company

The merchant acquires your payment card

You acquire payments