What is one of the six goals of PCI DSS?

Maintaining a vulnerability management program is one of the core goals of PCI DSS because it involves identifying, managing, and mitigating vulnerabilities in systems that handle cardholder data. This goal is crucial for protecting sensitive information from exploitation by malicious actors. A robust vulnerability management program includes regular vulnerability scanning, applying security patches, and ensuring that any weaknesses are addressed promptly to safeguard against potential breaches. By focusing on this aspect, organizations can reduce the risk of cardholder data compromise, which is a primary aim of the PCI DSS framework.

The other options, while related to business practices, do not align with the primary goals outlined in the PCI DSS requirements. They focus on marketing and financial aspects rather than the foundational security measures necessary to protect cardholder information.