Antivirus log retention should be in accordance with which PCI DSS requirement?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards
From $24.99Unlock all

Prepare for the PCI DSS Test with detailed questions and explanations. Use flashcards and quizzes to enhance knowledge. Ensure you're ready for your certification exam!

Multiple Choice

Antivirus log retention should be in accordance with which PCI DSS requirement?

Explanation:
Retention of audit logs is a key part of PCI DSS for enabling security monitoring and incident response. Antivirus logs are part of those audit trails, so they must be kept in a way that supports investigation and forensics. The requirement that governs this is the rule that auditors expect: keep audit trails for at least one year, with the most recent three months readily available for analysis. This timing ensures you can trace malware events, correlate related alerts, and conduct timely investigations. Other options point to different security controls (such as how access is managed, how systems are configured, or how changes are tracked) but they do not specify the duration for retaining logs. Thus they don’t address antivirus log retention.

Retention of audit logs is a key part of PCI DSS for enabling security monitoring and incident response. Antivirus logs are part of those audit trails, so they must be kept in a way that supports investigation and forensics. The requirement that governs this is the rule that auditors expect: keep audit trails for at least one year, with the most recent three months readily available for analysis. This timing ensures you can trace malware events, correlate related alerts, and conduct timely investigations.

Other options point to different security controls (such as how access is managed, how systems are configured, or how changes are tracked) but they do not specify the duration for retaining logs. Thus they don’t address antivirus log retention.

More Multiple Choice Questions
Subscribe

Get the latest from Examzify

You can unsubscribe at any time. Read our privacy policy