In order to be compliant with Payment Card Industry Data Security Standard $($PCI DSS$),$ one of the control objectives that should be included in one$$s security policies and controls is building and maintaining a secure network. The reason for this is as follows:

Group of answer choices

a$)$ to require monitoring access to cardholder and periodic penetration testing of the network

b$)$ to specify how to maintain secure systems and applications, including the required use of antivirus software

c$)$ to require that security policies reflect the PCI DSS requirements, and that these policies are kept current and an awareness program is implemented

d$)$ to have a specific firewall, system password, and other security network layer controls