Tag: evaluation
What are the advantages and disadvantages of the periodic rotation of the QSA advisor or company?
In order to ensure optimal levels of quality in assessments of compliance with PCI SSC standards, it is highly recommended (and sometimes mandatory) to implement a periodic rotation of the advisor or QSA company. But which ones...
Artificial Intelligence (AI) in PCI assessments: A look at the new PCI SSC guide
In March 2025, the PCI SSC published a new guide that will completely change the process of evaluating controls of its standards, allowing the controlled use of Artificial Intelligence (AI) technologies to support QSA advisors: Payment...
It is not said: "PCI DSS Audit". It should read: ‘PCI DSS Compliance Assessment’
It is very common to hear the terms "PCI DSS Audit" or "PCI DSS Auditor" within the jargon related to PCI DSS standard compliance. The use of this terminology is overcrowded even in Qualified Security Advisors...
