Certified Incident Handler (ECIH) — Question 6

Myles, a security professional at an organization, provided laptops for all the employees to carry out the business processes from remote locations. While installing necessary applications required for the business, Myles has also installed antivirus software on each laptop following the company's policy to detect and protect the machines from external malicious events over the Internet.
Identify the PCI-DSS requirement followed by Myles in the above scenario.

Answer options

• A. PCI-DSS requirement no 1.3.2
• B. PCI-DSS requirement no 1.3.5
• C. PCI-DSS requirement no 5.1
• D. PCI-DSS requirement no 1.3.1

Correct answer: C

Explanation

The correct answer is C, PCI-DSS requirement no 5.1, which mandates the installation of antivirus software to protect systems from malware. Options A, B, and D refer to different aspects of security and system configuration that do not directly relate to the installation of antivirus software for malware protection.