Performing CyberOps Using Cisco Security Technologies (CBRCOR) — Question 115

An audit is assessing a small business that is selling automotive parts and diagnostic services. Due to increased customer demands, the company recently started to accept credit card payments and acquired a POS terminal. Which compliance regulations must the audit apply to the company?

Answer options

• A. HIPAA
• B. FISMA
• C. COBIT
• D. PCI DSS

Correct answer: D

Explanation

The correct answer is PCI DSS, which stands for Payment Card Industry Data Security Standard, as it specifically governs the security of credit card transactions. HIPAA relates to healthcare information, FISMA pertains to federal information systems, and COBIT is a framework for IT governance and management, none of which are applicable to credit card processing.