QSA Assessments

IntaForensics® consultants focus on current and impending cyber security risks, advising and supporting clients to ensure they understand the dangers and implications of a successful attack. In a world where your data is a highly sought-after commodity, making sure it is protected must be regarded as a top priority for all organisations.

Contact Us
ccss-certlogo500x500 iasme-certlogo500x500 cyberessentials-certlogo500x500 pci-certlogo500x500-2 crest-certlogo500x500 attcyber-certlogo500x500

PCI DSS QSA Assessment

IntaForensics are accredited to offer specialist consultancy for mandatory PCI DSS compliance. We can also add value by offering in-house technical expertise to further improve network and information security for retail, MOTO, e-commerce organisations and service providers.

A Qualified Security Assessor (QSA) is an experienced security professional with a technical and auditing background, who has attained the PCI Qualified Security Assessor certification. A QSA’s role is to assess rather than just audit. As part of a customer’s PCI Compliance journey, the QSA reviews and samples the environment including, people, processes and systems.

PCI DSS QSA Assessment

Scoping

Identify location of cardholder data within the environment.

Review use of segmentation.

Review existing controls to descope the environment from PCI DSS compliance.

Initial Asessment

On-site assessment of Cardholder Data Environment (CDE).

Review of people, processes and systems that interact with the CDE.

Remediation (If Required)

Creation of initial report highlighting remediation required.

Review of remediation activity and evidence to bring all PCI DSS requirements into a compliant state.

Final Reporting

Creation of final Report on Compliance (RoC), detailing companies PCI DSS compliance.

Creation of ‘Attestation of Compliance’ (AOC) and any required supporting documentation.

QSA Assessment Process

QSA Consultancy Service

Who is this Service For?

Customers who already report on their PCI Compliance, through self-assessment or onsite assessment from a QSA company:

Discussing changes to the environment and the impact this will have on compliance requirements;
Reviewing payment channels and their transactional volumes to confirm the correct SAQs are being completed.

QSA On-Site Assessment Support

Who is this Service For?

Merchants and Service Providers that are required by their Acquirer or Brand to complete an on-site assessment of their PCI DSS compliance.

QSA Self Assessment Support

Who is this Service For?

Merchants or Service Providers that are able to self-assess their PCI compliance status.

Existing Self-Assessment customers that need to review the Self-Assessment Questionnaire (SAQ) they are completing to confirm it is still correct for their environment.

Customers who have taken over the assessment process from another party and need assurance that the self-assessment is correctly identified.

Jeff has been a security partner for us for more than ten years, providing effective assessment and advice throughout this time. Initially he became a trusted auditor for our PCI DSS compliance, quickly establishing a good understanding of our business to be able to apply the Standard effectively. Later, his assistance in migrating our process to align with the ISO 27001 standard provided many benefits and we have received no issues from the independent auditor. His style immediately puts people at ease, whilst allowing the underlying message to be delivered in an effective manner.

Conferma

Cyber Security

Up to 12,000 schools could become targets of cyber-attacks in 2022

Up to 12,000 schools could become targets of cyber-attacks in 2022 This frightening statistic comes after more than three quarters […]

Read More
Cyber Security

Cyber Attacks: Attacker Techniques and the Business Impact

Cyber Attacks: Attacker Techniques and the Business Impact Many businesses across the UK are concerned about the impact that a […]

Read More
Cyber Security

Incident Response to a Cryptocurrency Attack

Incident Response to a Cryptocurrency Attack As the seemingly never-ending tranches of media reports describe, incidents of computer misuse and […]

Read More

Contact our Cyber Security team today

Contact Us