Qualified Security Assessor
- Qualified Security Assessor
The Payment Card Industry (PCI) Qualified Security Assessor (QSA) designation is conferred by the [https://www.pcisecuritystandards.org/ PCI Security Standards Council] to those individuals that meet specific information security education requirements, have taken the appropriate training from the PCI Security Standards Council, are employees of an [https://www.pcisecuritystandards.org/pdfs/pci_qsa_list.pdf Approved PCI Security and Auditing Firm] , and will be performing PCI compliance audits as it relates to the protection of credit card data.
The term QSA may also be implied to identify an individual qualified to perform PCI compliance auditing and consulting.
The primary goal of an individual with the PCI QSA certification is to perform an assessment of a firm that handles credit card data against the high-level control objectives of the PCI Data Security Standard (PCI DSS). There are different levels of auditing and reporting requirements, but the twelve high-level control objectives, and corresponding sub-requirements, of the PCI Data Security Standard are required to be met either directly or through a compensating control. Requirement 3.2 prohibits the storage of track data and does not allow for compensating controls. It is important to note that compensating controls are not always allowed and must be approved on a case-by-case basis.
List of PCI approved QSAs
[http://www.controlcase.com ControlCase]
[https://www.pcisecuritystandards.org/pdfs/pci_qsa_list.pdf]
Wikimedia Foundation.
2010.
Look at other dictionaries:
Payment Card Industry Data Security Standard — The Payment Card Industry Data Security Standard (PCI DSS) is an information security standard for organizations that handle cardholder information for the major debit, credit, prepaid, e purse, ATM, and POS cards. Defined by the Payment Card… … Wikipedia
Mako Networks — Type Private Industry Network Management, Internet Security, PCI DSS Founded 2000 Headquarters Auckland, New Zealand Key people CEO: Bill Farmer Founders: Sim … Wikipedia
Comsec Consulting — Ltd Type private TASE: CMSC L[1][2] Industry Information Security … Wikipedia
PCI DSS — stands for Payment Card Industry Data Security Standard. It was developed by the major credit card companies as a guideline to help organizations that process card payments prevent credit card fraud, hacking and various other security… … Wikipedia
Martin McKeay — (b. June 29, 1971[1]) is a United States computer security expert and blogger that works for Akamai Technologies as a Security Evangelist.[2][3] He writes one of the most popular security blogs[4] and also a podcast called the Network Security… … Wikipedia
PCI DSS — Эту статью следует викифицировать. Пожалуйста, оформите её согласно правилам оформления статей. Payment Card Industry Data Security Standard (PCI DSS) стандарт безопасности данных индустрии платёжных карт, разработ … Википедия
PCI DSS — PCI DSS, en su idioma nativo (Inglés): Payment Card Industry Data Security Standard, significa Estándar de Seguridad de Datos para la Industria de Tarjeta de Pago. Este estándar ha sido desarrollado por un comité conformado por las compañías de… … Wikipedia Español
QSA — is a three letter acronym that may refer to:*Qualified Security Assessor A certification by the Payment Card Industry (PCI) Security Standards Council *Queen s Scout Award *Quaker Social Action *Qt Script for Applications scripting engine *Queen… … Wikipedia
Courts of Scotland — Scots law This article is part of the series: Law of Scotland Administration … Wikipedia
Government of Oklahoma — The government of the US State of Oklahoma, established by the Oklahoma Constitution, is a republican democracy modeled after the Federal government of the United States. The state government has three branches: the executive, legislative, and… … Wikipedia