Exam 3V0-21.21 All QuestionsBrowse all questions from this exam
Go to Exam
Question 48

There is a request for approved virtual machine applications through a new vSphere platform's integrated automation portal. The platform was built following all provided company security guidelines and has been assessed against Sarbanes-Oxley Act of 2002 (SOX) regulations.

The platform has the following characteristics:

✑ vRealize Operations is being used to monitor all clusters.

✑ There is a dedicated ESXi cluster, supporting all management services.

- All network traffic is via distributed virtual switches (DVS).

✑ There is a dedicated ESXi cluster for all line-of-business applications.

- Network traffic is serviced by NSX-T.

✑ There is a dedicated ESXi cluster for virtual desktop infrastructure (VDI).

- Network traffic is serviced by NSX-T.

The application owner is requesting approval to install a new service that must be protected as per the Payment Card Industry (PCI) Data Security Standard.

Which additional non-functional requirement should the architect include in the design to support the new service?

    Correct Answer: A

    To support the new service needing to comply with the Payment Card Industry (PCI) Data Security Standard, the vSphere hosting platform and all PCI application virtual machines must be assessed against PCI compliance. PCI DSS compliance involves ensuring that systems handling cardholder data follow precise security measures. This assessment is essential for meeting required standards and protecting sensitive payment card data.

Discussion
nemisis95Option: D

It's D. The vSphere hosting platform and all PCI application virtual machines must be monitored using the vRealize Operations Compliance Pack for Payment Card Industry. NFR - Any requirement that specifies how the system performs a certain function. In this case using vRealize Operations Compliance Pack for PCI

MezzeOption: D

It's D for sure

lifeflakesOption: D

"Non-functional requirements specify all the remaining requirements not covered by the functional requirements. They specify criteria that judge the operation of a system, rather than specific behaviours" - from the document - Functional versus Non-Functional Requirements and Testing It's D in my view.

JLF_VMWOption: A

A: NFR Security Industry standards compliance B: FR: Legal or regulatory requirements C: FR: Business rules D: FR: Business rules

ozonOption: A

Based on these definitions: -Functional requirements describe what the solution must accomplish or how the solution must behave, for example, the system must limit access to authorized users. -Nonfunctional requirements describe the overall characteristics of a solution, for example, the system must be located in the DMZ to satisfy security requirement RS05 A. NFR D. FR so the answer is A

zhongzhong5011Option: A

A : Industry standards compliance / NFR design course D: FR ,because vRealize is exiting ! you are require to use that !

rajeshrubOption: A

Shall be A

nemisis95

NFR = Any requirement that specifies HOW the system performs a certain function. A does not show HOW this should be performed.

FR_WolfmanOption: D

B is about SOX compliance, which is already the case, and not enough for PCI compliance C is about network traffic, and has nothing specific to reach the PCI compliance requirement A & D will reach the same objective : to be PCI compliant. A is a functional requirement (we want to ensure the VMs are compliant), and D is a non-functional requirement (it stats how technically we will monitor the compliant). So right answer is D.

mazenkurOption: D

It is D becouse only vRealize can compare PCI pack against your vSphere