PCI CPSA
Q: 1
A vendor puts cardholder information into a chip by sliding a payment card through a machine that
programs it and verifies the dat
a. The chip can make contactless transactions. Which of the following best describes the vendor’s
activity?
Options
Q: 2
Who performs regular AQM audits of CPSA companies?
Options
Q: 3
If a vendor plans to terminate an employee, which of these must be done?
Options
Q: 4
Which of the following personnel changes must result in the vendor notifying the Vendor Program
Administration (VPA)?
Options
Q: 5
If you have a query about a missing field in the card production reporting template, which
organization is best-placed to answer it?
Options
Q: 6
The vendor's technical documentation shows that the alarm system does not send alerts to the
security control room. After a discussion you learn that the alarm works perfectly, and sends a clear
signal to summon the local police every time an emergency exit is opened. Why might this cause a
problem for their assessment?
Options
Q: 7
Which of the following security awareness measures is required for compliance?
Options
Q: 8
Which of these are guards allowed access to?
Options
Q: 9
Before you go on-site, the vendor’s primary contact communicates a legitimate reason for delaying
the assessment for several months. Who can approve the change in the report delivery schedule?
Options
Q: 10
Which document describes the results of an assessment, and is signed by both the assessor and the
vendor executive officer?
Options
Question 1 of 10
