Question 10 of 10Pro Only

How would you architect a system that handles payment card data in compliance with PCI-DSS while minimizing the scope of the compliance assessment?

Sample answer preview

PCI-DSS compliance is required for any system that stores, processes, or transmits payment card data. The most effective architectural strategy is to minimize the compliance scope by reducing the number of systems that touch cardholder data to the absolute minimum, using…

PCI-DSStokenizationscope reductionCDESAQ-Ahosted payment fields

Unlock the full answer

Get the complete model answer, key points, common pitfalls, and access to 9+ more Solutions Architect interview questions.

Upgrade to Pro

Starting at $19/month • Cancel anytime

Back to Track