QSA Assessments

IntaForensics® consultants focus on current and impending cyber security risks, advising and supporting clients to ensure they understand the dangers and implications of a successful attack. In a world where your data is a highly sought-after commodity, making sure it is protected must be regarded as a top priority for all organisations.

ccss-certlogo500x500 iasme-certlogo500x500 cyberessentials-certlogo500x500 pci-certlogo500x500-2 crest-certlogo500x500 attcyber-certlogo500x500

PCI DSS QSA Assessment

IntaForensics are accredited to offer specialist consultancy for mandatory PCI DSS compliance. We can also add value by offering in-house technical expertise to further improve network and information security for retail, MOTO, e-commerce organisations and service providers.

A Qualified Security Assessor (QSA) is an experienced security professional with a technical and auditing background, who has attained the PCI Qualified Security Assessor certification. A QSA’s role is to assess rather than just audit. As part of a customer’s PCI Compliance journey, the QSA reviews and samples the environment including, people, processes and systems.

PCI DSS QSA Assessment

Scoping

Identify location of cardholder data within the environment.

Review use of segmentation.

Review existing controls to descope the environment from PCI DSS compliance.

Initial Asessment

On-site assessment of Cardholder Data Environment (CDE).

Review of people, processes and systems that interact with the CDE.

Remediation (If Required)

Creation of initial report highlighting remediation required.

Review of remediation activity and evidence to bring all PCI DSS requirements into a compliant state..

Final Reporting

Creation of final Report on Compliance (RoC), detailing companies PCI DSS compliance.

Creation of ‘Attestation of Compliance’ (AOC) and any required supporting documentation.

QSA Assessment Process

QSA Consultancy Service

Who is this Service For?

Customers who already report on their PCI Compliance, through self-assessment or onsite assessment from a QSA company:

Discussing changes to the environment and the impact this will have on compliance requirements;
Reviewing payment channels and their transactional volumes to confirm the correct SAQs are being completed.

QSA On-Site Assessment Support

Who is this Service For?

Merchants and Service Providers that are required by their Acquirer or Brand to complete an on-site assessment of their PCI DSS compliance.

QSA Self Assessment Support

Who is this Service For?

Merchants or Service Providers that are able to self-assess their PCI compliance status.

Existing Self-Assessment customers that need to review the Self-Assessment Questionnaire (SAQ) they are completing to confirm it is still correct for their environment.

Customers who have taken over the assessment process from another party and need assurance that the self-assessment is correctly identified.

Jeff has been a security partner for us for more than ten years, providing effective assessment and advice throughout this time. Initially he became a trusted auditor for our PCI DSS compliance, quickly establishing a good understanding of our business to be able to apply the Standard effectively. Later, his assistance in migrating our process to align with the ISO 27001 standard provided many benefits and we have received no issues from the independent auditor. His style immediately puts people at ease, whilst allowing the underlying message to be delivered in an effective manner.

Conferma

Cyber Essentials – Simple, Effective and Affordable Cyber Security for the Legal Profession

With reams of sensitive personal data and transactions that involve large sums of money, the legal sector remains a huge […]

Read More

Calling all Registered Charities: Get Cyber Essentials at a special discount with IntaForensics

Charities play a crucial role in society, providing support and relief to those who need it most in their darkest […]

Read More

The Anatomy of a Ransomware Attack: Ten Steps to Defending Your Company Against Cybercrime

According to data from Egress, a ransomware attack occurs every eleven seconds. The frequency of attacks on a daily basis […]

Read More

Talk to our consultation team today

Contact Us