What must be included m an organization’s procedures for managing visitors?
A . Visitors are escorted at all times within areas where cardholder data is processed or maintained
B . Visitor badges are identical to badges used by onsite personnel
C . Visitor log includes visitor name, address, and contact phone number
D . Visitors retain their identification (for example a visitor badge) for 30 days after completion of the visit
Answer: A
Explanation:
According to the PCI DSS v3.2.1 Quick Reference Guide1, visitors are escorted at all times within areas where cardholder data is processed or maintained, visitor badges are identical to badges used by onsite personnel, visitor log includes visitor name, address, and contact phone number, visitors retain their identification (for example a visitor badge) for 30 days after completion of the visit. These are some examples of procedures that must be included in an organization’s procedures for managing visitors who access in-scope systems where cardholder data is processed or maintained.
Latest ASSESSOR_NEW_V4 Dumps Valid Version with 60 Q&As
Latest And Valid Q&A | Instant Download | Once Fail, Full Refund