SY0-701
Security Program Management and Oversight
medium
Question 9 of 20

An organization is subject to the Payment Card Industry Data Security Standard (PCI DSS). Which action is required when they discover that a business process is no longer compliant with a specific PCI DSS control?

AReport the non-compliance publicly
BDocument the non-compliance, assess the scope, and implement remediation or compensating controls
CImmediately cease all payment processing operations
DNotify all cardholders of potential data exposure

More Security Program Management and Oversight Questions

20 questions

Full CompTIA Security+ Practice Test

All topics covered

All CompTIA Security+ Questions

Browse by topic

Related Questions

Which term describes the process of identifying, analyzing, and responding to potential risks to an ...

easy

A company has identified that a critical server has a known vulnerability that would be extremely co...

medium

An organization experiences a significant data breach. During the incident response review, it is di...

hard

A security awareness program sends simulated phishing emails to employees and tracks who clicks the ...

medium

A healthcare organization is implementing a new patient records system that will store protected hea...

hard
View all Security Program Management and Oversight questions

Educational Content — CertQnA practice questions are written against official exam objectives, covering the same domains tested on the real exam. All content is original and independent — not actual exam questions, not affiliated with any certification vendor. Learn more about our content policy

Discussion

Be the first to share your understanding of this concept

⚠️ Discussion is for concept clarification only. Do not share or request actual exam questions or answers.

Sign in to join the discussion

Sign InCreate free account