Regulatory Compliance, Governance and Security:

qualified security assessor (QSA)


March 16, 2010  10:06 PM

PCI DSS Compliance | What’s New for 2010? | An Auditor’s Viewpoint



Posted by: Charles Denyer
charles denyer, pci dss compliance, pci qsa, qualified security assessor (QSA)

PCI DSS Compliance will continue to be one of the most talked about regulatory compliance initiatives for 2010, without question. First and foremost, data breaches are still occurring, companies are still losing sensitive cardholder data, and lastly, PCI compliance is finally (yes finally) being...

December 10, 2009  4:56 PM

PCI DSS Auditors | You Need to hire a Qualified Security Assessor (QSA)



Posted by: Charles Denyer
charles denyer, merchant, ndb advisory, Payment Card Industry Data Security Standard, pci dss auditors, pci qsa, pcissc, qualified security assessor (QSA), service provider

The term PCI DSS auditors is technically incorrect, as one really should be looking for a Payment Card Industry Data Security Standard (PCI DSS) Qualified Security Assessor (QSA). So what really is a QSA? A QSA is an individual who has...


November 24, 2009  6:51 PM

PCI Qualified Security Assessor | How to Choose a QSA



Posted by: Charles Denyer
charles denyer, merchants, pci dss readiness assessment, pci roadmap to compliance, qsa, qualified security assessor (QSA), service providers

Need a PCI Qualified Security Assessor? Curious as to how to choose a QSA? First and foremost, make sure the QSA has ample experience in performing on-site PCI DSS Level 1 assessments for merchants and service providers. Additionally, make...


July 24, 2009  8:00 PM

PCI DSS Compliance | Why You Need a QSA for Level 1 Compliance



Posted by: Charles Denyer
charles denyer, dss, level 1, merchant, payment card industry data security standards (PCI DSS), payment card industry security standards council, PCI, pci ssc, qsa, qualified security assessor (QSA), service provider

PCI DSS Compliance for Level 1 Merchants and Service Providers is mandatory. In short, if you are a Merchant or Service Provider and have been...


March 27, 2009  10:15 PM

PCI DSS Transaction Levels | VISA Requirements for Merchants



Posted by: Charles Denyer
charles denyer, payment card industry data security standards (PCI DSS), PCI DSS, pci dss transaction levels, pci qsa, qualified security assessor (QSA), visa, visa level 1

PCI DSS transaction levels for merchants are used to identify what "Level" an organization would fall into for PCI DSS compliance. Level 1: Any merchant-regardless of acceptance...


March 26, 2009  1:09 AM

Credit Card Security Compliance | Learn about PCI DSS



Posted by: Charles Denyer
american express, charles denyer, credit card security compliance, Discover Card, jcb, mastercard, payment card industry data security standards (PCI DSS), pci dss self assessment, qualified security assessor (QSA), visa

Credit card security compliance is more technically known as the Payment Card Industry Data Security Standards, simply known as PCI DSS. PCI DSS is a framework established and agreed upon by the major payment brands (Visa, MasterCard, American Express, Discover Card, and JCB). The oversight,...


March 24, 2009  11:49 PM

What is Required for PCI Assessment? | PCI DSS Q and A



Posted by: Charles Denyer
Build and Maintain a Secure Network, charles denyer, Implement Strong Access Control Measures, Maintain an Information Security Policy, PCI DSS, Protect Cardholder Data, qualified security assessor (QSA), Regularly Monitor and Test Networks, requirement 12, What is Required for PCI Assessment?

What is required for PCI assessment compliance? This is a question i'm often asked, especially by organizations that need to comply with Level 1 of the PCI DSS standards, which is an on-site assessment conducted by a Qualified Security Assessor (QSA), such as myself. Well,


March 24, 2009  11:39 PM

12 PCI DSS Requirements | Lessons Learned from a PCI QSA



Posted by: Charles Denyer
12 PCI DSS requirements, charles denyer, payment card industry dat, payment card industry data security standards (PCI DSS), pci dss policies and procedures, pci readiness assessment, qualified security assessor (QSA)

The 12 PCI DSS Requirements are lengthy and technical indeed. However, organizations need to truly understand the scope of the PCI assessment for gaining greater insight into the efficiencies that can be had for undertaking a...


March 23, 2009  12:07 PM

PCI DSS Merchants Levels | Learn Your Requirements for PCI DSS Compliance



Posted by: Charles Denyer
american express, charles denyer, discover, jcb, mastercard, pci dss merchant levels, pci ssc, qsa, qualified security assessor (QSA), self assessment questionnaire, visa

Regarding PCI DSS merchant levels, it is paramount that these very merchants properly identify the level they fall under for compliance with PCI DSS. Most merchants will be able to undergo their own payment card industry data security standards (PCI DSS) self assessment questionnaire (SAQ)....


February 21, 2009  12:57 PM

PCI Requirement 1: Install and Maintain a Firewall Configuration to Protect Cardholder Data | What You Need to Know



Posted by: Charles Denyer
cisco, firewalls, juniper, load balancers, payment card industry data security standards (PCI DSS), PCI DSS, pci dss v1.2, PCI Requirement #1: Install and maintain a firewall configuration to protect cardholder data, qualified security assessor (QSA), routers, rulesets

For Payment Card Industry (PCI) compliance, there are twelve (12) core, functional requirements mandated under PCI DSS v1.2. What's important to note is that many times you truly need to "read between the lines" to interpret, comprehend, and understand what the PCI DSS standards are actually...


Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: