Under 10.2.1, which events must be captured by automated audit trails?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards
From $9.99Unlock all

Study for the PCI Data Security Standard Exam. Master your knowledge with interactive flashcards and multiple-choice questions, each with hints and explanations. Prepare confidently for your certification test!

Multiple Choice

Under 10.2.1, which events must be captured by automated audit trails?

Explanation:
Requiring automated audit trails to capture all individual user accesses to cardholder data means you can see exactly who accessed CHD, when they did it, and what they did with the data. This enables you to reconstruct events, support investigations, and ensure accountability for anyone touching CHD on any system component that stores, processes, or transmits it. Monitoring only successful logins misses the rest of the activity that occurs after authentication, such as viewing, modifying, or exporting data. Password changes concern authentication management, not data access, and recording only privileged actions overlooks normal users who may still access CHD. Capturing all individual user accesses provides the comprehensive view required to track and protect CHD.

Requiring automated audit trails to capture all individual user accesses to cardholder data means you can see exactly who accessed CHD, when they did it, and what they did with the data. This enables you to reconstruct events, support investigations, and ensure accountability for anyone touching CHD on any system component that stores, processes, or transmits it. Monitoring only successful logins misses the rest of the activity that occurs after authentication, such as viewing, modifying, or exporting data. Password changes concern authentication management, not data access, and recording only privileged actions overlooks normal users who may still access CHD. Capturing all individual user accesses provides the comprehensive view required to track and protect CHD.

More Multiple Choice Questions
Subscribe

Get the latest from Examzify

You can unsubscribe at any time. Read our privacy policy