In this scenario, which regulatory compliance standard should be used to govern this data?

NSK101 0 Comments

You are working with a large retail chain and have concerns about their customer data. You want to protect customer credit card data so that it is never exposed in transit or at rest.

In this scenario, which regulatory compliance standard should be used to govern this data?
A . SOC 3
B . PCI-DSS
C . AES-256
D . ISO 27001

Answer: B

Explanation:

PCI-DSS stands for Payment Card Industry Data Security Standard, which is a set of security requirements for organizations that handle credit card data. It aims to protect cardholder data from unauthorized access, disclosure, or theft, both in transit and at rest. PCI-DSS covers various aspects of security, such as encryption, authentication, firewall, logging, monitoring, and incident response. If you are working with a large retail chain and have concerns about their customer data, you should use PCI-DSS as the regulatory compliance standard to govern this data. SOC 3, AES-256, and ISO 27001 are not specific to credit card data protection, although they may have some relevance to general security practices.

Reference: [PCI-DSS], [SOC 3], [AES-256], [ISO 27001].

Latest NSK101 Dumps Valid Version with 60 Q&As

Latest And Valid Q&A | Instant Download | Once Fail, Full Refund

Instant Download NSK101 PDF     NSK101 Questions Online Training
Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments