An organization recently started processing, transmitting, and storing its customers' credit card information. Within a week of doing so, the organization suffered a massive breach that resulted in the exposure of the customers' information.
Which of the following provides the BEST guidance for protecting such information while it is at rest and in transit?
The Payment Card Industry Data Security Standard (PCI DSS) is specifically designed to protect credit card information. It provides comprehensive guidelines for securing cardholder data when it is at rest and in transit. Organizations that process, store, or transmit credit card information are required to comply with PCI DSS standards to prevent data breaches and secure sensitive information.
Definitely PCI DSS
look up PCI DSS You'll see it as a payment system
PCI DSS - Payment Card Industry Data Security Standard. Deals specifically with anything to do with card transactions.
easy peacy, C
If you think it's any other answer, seriously consider a career change.
Source: Verifying each answer against Chat GPT, my experience, other test banks, a written book, and weighing in the discussion from all users to create a 100% accurate guide for myself before I take the exam. (It isn't easy because of the time needed, but it is doing my diligence)
Is it PCI ? or NIST ? confused ?