PCI CPSA Exam Practice Test Instant Access

Question 1

Which of the follow best describes a Technical FAQ?

ATechnical FAQs only apply to the specific technology as the FAQ defines it

BTechnical FAQs can be submitted to PCI SSC at any time

CUse of the Technical FAQs is mandatory, they shall be used during an assessment

DUse of the Technical FAQs is optional, they are considered guidance

Answer : D

Question 2

After reviewing their completed ROC and AOC, which state that they are compliant, the vendor wishes to be listed on PCI SSC's list of Compliant Card Vendors. How should you assist them with the listing process?

ASubmit the full ROC to PCI SSC

BSubmit only the AOC to PCI SSC

CInform the vendor that PCI SSC does not list compliant vendors

DInform the vendor that they must request a listing via the payment brand(s) that received their ROC

Answer : D

Question 3

Which of the following statements is true about the facility's non-emergency exits?

AThey must be contact-alarm monitored only when card production activities are taking place

BThey must be configured to prevent staff tailgating

CThey may be left unlocked when a guard is present

DThey must be fitted with biometric access-control devices

Answer : B

Question 4

Who performs regular AQM audits of CPSA companies?

AIssuing banks

BPayment brands

CPCI SSC

DVendor

Answer : C

Question 5

For how long must a CPSA Company maintain workpapers and technical information obtained during an assessment?

AUntil each applicable payment brand has accepted (and signed off) the ROC and AOC

BAs long as the entity under assessment is a client of the CPSA Company

C3 years

D1 year

Answer : C

Question 6

An assessor is unsure if log review and interview is sufficient testing for a requirement. Who can best answer this question?

APayment brands

BIssuing banks

CVendor

DPCI SSC

Answer : D

Question 7

An assessor must provide which of the following to their client at the start of every assessment?

ACPSA Feedback Form

BQuality Assurance Manual

CAttestation of Compliance

DVendor Release Agreement

Answer : C

PCI CPSA Card Production Security Assessor (CPSA) Qualification Exam Practice Test