CCDE: Cisco Certified Design Expert (Practical) — Question 265

Which two actions must merchants do to be compliant with the Payment Card Industry Data Security Standard? (Choose two.)

Answer options

• A. conduct risk analyses
• B. install firewalls
• C. use antivirus software
• D. establish monitoring policies
• E. establish risk management policies

Correct answer: B, C

Explanation

Installing firewalls (B) and using antivirus software (C) are critical measures for protecting cardholder data and ensuring a secure environment, which are essential for PCI DSS compliance. The other options, while important for overall security management, do not directly address the specific requirements outlined in the PCI DSS standards.