Remote-access policies require automatic session disconnect after inactivity. Which statement matches this requirement?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards
From $9.99Unlock all

Prepare for the PCI DSS Requirements Test with our interactive quizzes. Use multiple choice questions, flashcards, and detailed explanations. Ace your exam with confidence!

Multiple Choice

Remote-access policies require automatic session disconnect after inactivity. Which statement matches this requirement?

Explanation:
Automatic session termination after inactivity is a protective control that prevents unattended remote-access sessions from staying open. When a session is automatically disconnected after a period of inactivity, it reduces the risk of someone else using an unlocked workstation or continuing to access sensitive data without re-authenticating. This aligns with PCI DSS goals of limiting access and protecting data by enforcing timely session end, especially for remote access. The other options weaken protection or introduce friction that defeats the purpose: making auto-disconnect optional means sessions could remain open indefinitely; having no auto-disconnect policy allows unattended access; requiring admin approval adds delays and human factors that can leave sessions exposed longer than necessary.

Automatic session termination after inactivity is a protective control that prevents unattended remote-access sessions from staying open. When a session is automatically disconnected after a period of inactivity, it reduces the risk of someone else using an unlocked workstation or continuing to access sensitive data without re-authenticating. This aligns with PCI DSS goals of limiting access and protecting data by enforcing timely session end, especially for remote access.

The other options weaken protection or introduce friction that defeats the purpose: making auto-disconnect optional means sessions could remain open indefinitely; having no auto-disconnect policy allows unattended access; requiring admin approval adds delays and human factors that can leave sessions exposed longer than necessary.

More Multiple Choice Questions
Subscribe

Get the latest from Examzify

You can unsubscribe at any time. Read our privacy policy