IIA Exam IIA-CFSA Topic 8 Question 49 Discussion

Actual exam question for IIA's IIA-CFSA exam

Question #: 49
Topic #: 8

[All IIA-CFSA Questions]

I- Restrict access to data by business need-to-know

II- Assign Unique ID t each person with computer access

III-Restrict physical access to cardholder data

The above requirements of PCI (Payment Card Industry) achieve which one of the following

goals?

AImplementation of Strong access control measures

BProtection of card holder

CMaintenance of information data security policy

DBuilding and maintenance of a secure network

Show Suggested Answer

Suggested Answer: D

by Coletta at Apr 26, 2024, 04:15 AM

Limited Time Offer

25%

Off

Get Premium IIA-CFSA Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Naomi

4 days ago

I think the answer is C) Maintenance of information data security policy because all the requirements mentioned are essential components of maintaining a secure information data security policy.

upvoted 0 times

...

I agree with Ryan. Restricting physical access to cardholder data also falls under strong access control measures, so the goal achieved by the requirements of PCI is indeed A) Implementation of Strong access control measures.

upvoted 0 times

...

Ryan

6 days ago

I think the answer is A) Implementation of Strong access control measures because restricting access to data by business need-to-know and assigning unique IDs to each person with computer access are both strong access control measures.

upvoted 0 times

...

IIA Exam IIA-CFSA Topic 8 Question 49 Discussion

Contribute your Thoughts:

Naomi

Kris

Ryan