Assessors

The ownership and management of Visa USA’s QDSC Program has transitioned to the PCI Security Standards Council ("PCI SSC") effective September 7, 2006.

All potential assessors wishing to perform PCI Data Security Assessments for merchants and service providers must be approved by the PCI SSC as a Qualified Security Assessor ("QSA"). Please visit the PCI Security Standards Council for details on the QSA Program, requirements, updated training schedules and related information.

While the QSA Program is now owned and maintained by the PCI SSC, Visa USA will continue to qualify existing QSAs in becoming Qualified Payment Application Security Companies ("QPASC"). QPASCs are required for the compliance validation of payment applications against the CISP Payment Application Best Practices.

Please contact Visa via email at AskVisaUSA@Visa.com for more details regarding QPASC designation.

PCI validation assessments performed by qualified security assessors have become increasingly critical in today's environment. The proficiency with which a QSA conducts an assessment can have a tremendous impact on the consistent and proper application of measures and controls compliant with the PCI Data Security Standard. Assessors performing PCI Data Security Assessments for merchants and service providers must be approved as a Qualified Security Assessor ("QSA").