Under 10.2.1, which events must be captured by automated audit trails?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards

From $9.99Unlock all

Study for the PCI Data Security Standard Test. Utilize flashcards and multiple-choice questions, each offering hints and detailed explanations. Prepare thoroughly for your exam and ensure compliance with PCI DSS!

Multiple Choice

Under 10.2.1, which events must be captured by automated audit trails?

Requiring automated audit trails to capture all individual user accesses to cardholder data means you can see exactly who accessed CHD, when they did it, and what they did with the data. This enables you to reconstruct events, support investigations, and ensure accountability for anyone touching CHD on any system component that stores, processes, or transmits it. Monitoring only successful logins misses the rest of the activity that occurs after authentication, such as viewing, modifying, or exporting data. Password changes concern authentication management, not data access, and recording only privileged actions overlooks normal users who may still access CHD. Capturing all individual user accesses provides the comprehensive view required to track and protect CHD.

Under 10.2.1, which events must be captured by automated audit trails?

Study for the PCI Data Security Standard Test. Utilize flashcards and multiple-choice questions, each offering hints and detailed explanations. Prepare thoroughly for your exam and ensure compliance with PCI DSS!

Under 10.2.1, which events must be captured by automated audit trails?

Get the latest from Examzify