Abstract
Given the importance of PCI DSS compliance to level 1 Merchant/Service Provider businesses, a great deal of nervousness is felt by organizations. As a result, they may end up feeling pressured into staying with the same qualified security assessment company (QSAC) to validate their compliance. These companies often become disenfranchised with the whole process. Either they feel that they start to receive less of a level of service that they received at the start of their engagement, they do not receive a consistent level of quality service from the QSAC, they receive promises that never come to bear, or they do not receive consistent QSA approaches. However, because of the inconsistencies between QSACs, they feel that they would be disadvantaged if they were to shop around.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Notes
- 1.
- 2.
- 3.
- 4.
- 5.
(ISC)2 Certified Information System Security Professional (CISSP), ISACA Certified Information Security Manager (CISM), or Certified ISO 27001 Lead Implementer.
- 6.
ISACA Certified Information Systems Auditor (CISA), GIAC Systems and Network Auditor (GSNA), Certified ISO 27001 Lead Auditor/Internal Auditor, IRCA ISMS Auditor or higher (e.g., Auditor/Lead Auditor, Principal Auditor), or IIA Certified Internal Auditor (CIA).
- 7.
- 8.
- 9.
- 10.
- 11.
Author information
Authors and Affiliations
Rights and permissions
Copyright information
© 2020 Jim Seaman
About this chapter
Cite this chapter
Seaman, J. (2020). Cometh the Year, Month, Day, Hour. In: PCI DSS. Apress, Berkeley, CA. https://doi.org/10.1007/978-1-4842-5808-8_16
Download citation
DOI: https://doi.org/10.1007/978-1-4842-5808-8_16
Published:
Publisher Name: Apress, Berkeley, CA
Print ISBN: 978-1-4842-5807-1
Online ISBN: 978-1-4842-5808-8
eBook Packages: Professional and Applied ComputingApress Access BooksProfessional and Applied Computing (R0)