Your company operates an e-commerce platform that stores, processes, and transmits cardholder data. The security team is configuring a SIEM log-retention policy to satisfy PCI DSS Requirement 10.7 while controlling storage costs. Which retention strategy BEST meets the standard's audit-trail requirement?
Archive all logs indefinitely in a glacier-tier storage service replicated across multiple regions.
Keep the most recent three months of logs online for immediate analysis and archive the remaining nine months offline, ensuring a total retention of one year.
Retain logs for 90 days, then roll up to daily summaries and purge the raw records.
Store all audit logs in hot storage for at least 12 months.
PCI DSS Requirement 10.7 mandates that audit-trail history be retained for at least one year, with a minimum of three months immediately available for analysis. The most common way to achieve this is to keep the most recent quarter of log data in hot (online) storage for rapid incident response, then move the older nine months to a less-expensive archival tier-giving one full year of retention and satisfying the accessibility rule. Storing all logs in hot storage for a year exceeds the requirement but drives unnecessary cost; keeping only 90 days or purging raw records violates the one-year rule; retaining logs indefinitely is permissible but not "best" for balancing compliance and cost.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is PCI DSS and why is it important?
Open an interactive chat with Bash
What is the difference between 'hot' and 'archival' storage?
Open an interactive chat with Bash
Why does PCI DSS require three months of logs to be immediately accessible?
Open an interactive chat with Bash
CompTIA Data+ DA0-002 (V2)
Data Governance
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
Pass with Confidence.
IT & Cybersecurity Package
You have hit the limits of our free tier, become a Premium Member today for unlimited access.
Military, Healthcare worker, Gov. employee or Teacher? See if you qualify for a Community Discount.
Monthly
$19.99 $11.99
$11.99/mo
Billed monthly, Cancel any time.
$19.99 after promotion ends
3 Month Pass
$44.99 $26.99
$8.99/mo
One time purchase of $26.99, Does not auto-renew.
$44.99 after promotion ends
Save $18!
MOST POPULAR
Annual Pass
$119.99 $71.99
$5.99/mo
One time purchase of $71.99, Does not auto-renew.
$119.99 after promotion ends
Save $48!
BEST DEAL
Lifetime Pass
$189.99 $113.99
One time purchase, Good for life.
Save $76!
What You Get
All IT & Cybersecurity Package plans include the following perks and exams .