Many QSAs come from an auditing background and are very good at the auditing portion of PCI. To provide more customer value, focus on understanding tactical security. In talking with customers, many auditors can tell them what is wrong, but few can provide ideas or suggestions on how to become compliant. The QSAs who are security professionals first and auditors second may well set themselves apart from their competition.
Dig Deeper on Regulatory compliance with cybersecurity laws and regulations
Related Q&A from John Kindervag
Learn how to ensure that your client's firewalls are compliant with PCI firewall configuration standards. Continue Reading
Learn whether a company with two distinct e-commerce brands must get them both compliant with the Payment Card Industry's Data Security Standard (PCI... Continue Reading
The PCI Security Standards Council identifies five levels of network security vulnerabilities, ranging from low to urgent. Continue Reading
Have a question for an expert?
Please add a title for your question
Get answers from a TechTarget expert on whatever's puzzling you.