6-38.1 Assessment and Audit Strategies Flashcards
1
Q
Passive assessment or audit activity with minimal operation impact
A
Examination
2
Q
Potentially intrustive activity used to identify strengths and weaknesses
A
Testing
3
Q
Assessment approach that may reduce the risk of bias
A
Covert
4
Q
An assessment/audit targets a combination of on-prem and cloud based resources
A
Hybrid
5
Q
Contractual obligation that mandates merchants undergo periodic controls assessments
A
PCI/DSS