Network Defense Essentials (NDE) Practice Exam 2025 – Your All-in-One Resource to Exam Success!

The correct selection focuses on PCI-DSS Requirement No 5.1 and No 5.3, which specifically address the implementation and management of antivirus software in a manner that protects against malware. Requirement 5.1 mandates that an organization must deploy anti-virus software on all systems commonly affected by malicious software. Meanwhile, Requirement 5.3 ensures that an organization must ensure that all anti-virus mechanisms are actively running and cannot be disabled.

This requirement is in place to ensure that the antivirus software remains a persistent defensive measure against the introduction and execution of malware. Unmonitored or non-operational antivirus solutions can lead to significant vulnerabilities in a network, making compliance with these specific sub-requirements vital for maintaining a robust security posture in line with PCI-DSS standards.

The other requirements mentioned—such as those concerning data encryption, access control, and secure system architecture—are important but do not directly correlate to the specific handling and configuration of antivirus software as described in the selected answer.