PCI QSA Services

The PCI Security Standards Council (PCI SSC) operates a number of programs to train, test and certify organisations and individuals to assess and validate adherence to PCI Security Standards.

In our capacity as a QSA company, our principle role is to ensure that an organisation is fully compliant to the requirements as specified in the Payment Card Industry Data Security Standard.

As an approved QSA company, we employ a number of individuals who are Qualified Security Assessors, trained and qualified to audit and validate an entity’s adherence to the PCI DSS standard.

All Qualified Security Assessor (QSA) companies must comply and adhere to a number of rigorous business and technical requirements as specified by the PCI SCC. For further information, please review the document, PCI DSS Validation Requirements for Qualified Security Assessors (QSA) Version.

Our status as an approved QSA company underpins our range of PCI DSS consultancy services which include project scoping, gap analysis, remediation support and audit. IT Governance Ltd is therefore able to provide the full range of PCI QSA services, including:

• PCI DSS Gap Analysis – assessing your organisation’s security stance in comparison to the requirements of the current version of the PCI DSS, identifying gaps and describing the steps that will enable you to meet your compliance objectives;

• PCI DSS Remediation services – we can deploy our information security consultancy skills, combined with our PCI DSS knowledge, to help you carry out any remediation that might be necessary to bring your card holder data environment (CDE) into compliance with PCI DSS; and

• We can audit PCI DSS compliance and, where required, sign off your compliance status.

Qualified Security Assessors (QSAs)

Qualified Security Assessor (QSA) companies are organisations that have been qualified by the PCI SSC to have their employees assess compliance to the PCI DSS standard.

Qualified Security Assessors are employees of these organisations who have been certified by the Council to validate an entity’s adherence to the PCI DSS. IT Governance Ltd is a PCI QSA and we employ staff who have attended the QSA training course and passed the relevant qualifying exams.

Our PCI QSA services are also within the scope of our ISO27001 and ISO9001 Management System certificates.

Email us or telephone + 44 (0)845 070 1750 to speak with a member of our team today.

• Basel II/III
• Business Continuity Management
• BS25999
• CGEIT
• CISA
• CISM
• CISSP
• CLAS
• Cloud Computing
• COBIT
• Codes of Connection
• Compliance
• CRISC
• Cyber Security
• Data Governance
• Data Protection
• Enterprise Architecture
• Green IT
• Information Security
• ISO 20000
• ISO 22301
• ISO 27001
• ISO 31000
• ISO 38500
• ISO 50001
• IT Audit
• IT Governance
• IT Management Frameworks
• ITIL
• IT Service Management
• Knowledge Management
• M_o_R
• MoV
• MSP
• N3
• P3O
• PCI DSS
  • PCI Consultancy
  • PCI DSS Courses
  • PCI Scanning
  • PCI for Smaller Businesses
  • PCI QSA Services
• Penetration Testing
• PMBOK
• PRINCE2
• Privacy
• Project Governance
• Risk Management Frameworks
• Security Hardware/Software
• SLAs
• Social Media Governance
• Soft Skills
• Management System Standards
• Technical Services
• TickITplus