Cisco Exam 350-201 Topic 6 Question 81 Discussion

Actual exam question for Cisco's 350-201 exam

Question #: 81
Topic #: 6

A company recently started accepting credit card payments in their local warehouses and is undergoing a PCI audit. Based on business requirements, the company needs to store sensitive authentication data for 45 days. How must data be stored for compliance?

Apost-authorization by non-issuing entities if there is a documented business justification

Bby entities that issue the payment cards or that perform support issuing services

Cpost-authorization by non-issuing entities if the data is encrypted and securely stored

Dby issuers and issuer processors if there is a legitimate reason

Show Suggested Answer

Suggested Answer: C

by Paris at Feb 07, 2024, 11:44 AM

Limited Time Offer

25%

Off

Get Premium 350-201 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Shaquana

4 days ago

Exactly. And you know what they say, 'encrypt first, ask questions later.' Better to be safe than sorry when it comes to PCI compliance, am I right?

upvoted 0 times

...

Jean

5 days ago

Totally. Option C is the only one that specifically mentions encryption and secure storage, which is crucial for protecting that sensitive data. The other options are a bit more vague.

upvoted 0 times

...

Bulah

6 days ago

Hmm, yeah, I agree. Based on the options, it seems like storing the data encrypted and securely by non-issuing entities (Option C) is the way to go. That seems to be the most compliant approach.

upvoted 0 times

...

Paulene

7 days ago

Okay, let's think this through. The company needs to store sensitive authentication data for 45 days, which is a pretty standard requirement for PCI compliance. But the tricky part is how to store it properly.

upvoted 0 times

...