What is the required review frequency for firewall & router rule sets per 1.1.7?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards
From $9.99Unlock all

Prepare for the PCI DSS Requirements Test with our interactive quizzes. Use multiple choice questions, flashcards, and detailed explanations. Ace your exam with confidence!

Multiple Choice

What is the required review frequency for firewall & router rule sets per 1.1.7?

Explanation:
Regularly reviewing firewall and router rulesets keeps access controls aligned with current security policies and the actual network design. Over time, rules can drift, become outdated, or accumulate unnecessary permissiveness, which can create gaps or risks. By performing a review at least every six months, you catch these drift issues before they become problems and ensure that only authorized rules are in place. This minimum interval balances security oversight with operational practicality. Annual reviews would miss changes that happen in six months, while more frequent reviews are acceptable but not required by the standard.

Regularly reviewing firewall and router rulesets keeps access controls aligned with current security policies and the actual network design. Over time, rules can drift, become outdated, or accumulate unnecessary permissiveness, which can create gaps or risks. By performing a review at least every six months, you catch these drift issues before they become problems and ensure that only authorized rules are in place. This minimum interval balances security oversight with operational practicality. Annual reviews would miss changes that happen in six months, while more frequent reviews are acceptable but not required by the standard.

More Multiple Choice Questions
Subscribe

Get the latest from Examzify

You can unsubscribe at any time. Read our privacy policy