Qualified Security Assessor | QSA Assessment & PCI Compliance

QSA Assessments

IntaForensics® consultants focus on current and impending cyber security risks, advising and supporting clients to ensure they understand the dangers and implications of a successful attack. In a world where your data is a highly sought-after commodity, making sure it is protected must be regarded as a top priority for all organisations.

PCI DSS QSA Assessment

IntaForensics are accredited to offer specialist consultancy for mandatory PCI DSS compliance. We can also add value by offering in-house technical expertise to further improve network and information security for retail, MOTO, e-commerce organisations and service providers.

A Qualified Security Assessor (QSA) is an experienced security professional with a technical and auditing background, who has attained the PCI Qualified Security Assessor certification. A QSA’s role is to assess rather than just audit. As part of a customer’s PCI Compliance journey, the QSA reviews and samples the environment including, people, processes and systems.

PCI DSS QSA Assessment

Scoping

Identify location of cardholder data within the environment.

Review use of segmentation.

Review existing controls to descope the environment from PCI DSS compliance.

Initial Asessment

On-site assessment of Cardholder Data Environment (CDE).

Review of people, processes and systems that interact with the CDE.

Remediation (If Required)

Creation of initial report highlighting remediation required.

Review of remediation activity and evidence to bring all PCI DSS requirements into a compliant state.

Final Reporting

Creation of final Report on Compliance (RoC), detailing companies PCI DSS compliance.

Creation of ‘Attestation of Compliance’ (AOC) and any required supporting documentation.

QSA Assessment Process

QSA Consultancy Service

Who is this Service For?

Customers who already report on their PCI Compliance, through self-assessment or onsite assessment from a QSA company:

Discussing changes to the environment and the impact this will have on compliance requirements;
Reviewing payment channels and their transactional volumes to confirm the correct SAQs are being completed.

QSA On-Site Assessment Support

Who is this Service For?

Merchants and Service Providers that are required by their Acquirer or Brand to complete an on-site assessment of their PCI DSS compliance.

QSA Self Assessment Support

Who is this Service For?

Merchants or Service Providers that are able to self-assess their PCI compliance status.

Existing Self-Assessment customers that need to review the Self-Assessment Questionnaire (SAQ) they are completing to confirm it is still correct for their environment.

Customers who have taken over the assessment process from another party and need assurance that the self-assessment is correctly identified.

Jeff has been a security partner for us for more than ten years, providing effective assessment and advice throughout this time. Initially he became a trusted auditor for our PCI DSS compliance, quickly establishing a good understanding of our business to be able to apply the Standard effectively. Later, his assistance in migrating our process to align with the ISO 27001 standard provided many benefits and we have received no issues from the independent auditor. His style immediately puts people at ease, whilst allowing the underlying message to be delivered in an effective manner.

Conferma

Cyber Security

QSA Assessments

PCI DSS QSA Assessment

PCI DSS QSA Assessment

Scoping

Initial Asessment

Remediation (If Required)

Final Reporting

QSA Assessment Process

QSA Consultancy Service

QSA On-Site Assessment Support

QSA Self Assessment Support

Conferma

Cyber security 2023 – the essential trends you can expect this year

Funded Cyber Essentials Programme

What does less cash and more digital payments mean for your business’ compliance?

Contact our Cyber Security team today

Contact Us