Vacta has a team of PCI Qualified Security Assessors that provides QSA services to the financial services industry's biggest names.

Specialising in card acquiring and issuing institutions, Vacta enjoys working with a number of high street Banks and have implemented assesments of several senior service providers.

A solid understanding of risk exposure and appetite in todays financial services marketplace is what our clients really value above the QSA accreditation. When this intelligent approach is considered in addition to the years of information security experience that every one of Vacta's QSA team has attained from working in financial services we begin to understand how Vacta has built its reputation for pain-free PCI compliance. Our team of seasoned QSAs has been conducting PCI assessments for many years, practicing in many industry sectors.

This real world experience enables our QSAs to take a pragmatic approach to interpreting the PCI-DSS standard, assessing their client’s security systems, and creating a remediation plan that is both effective and achievable. They know what works and what doesn’t.

Vacta QSA consultants follow a 5-step approach to client engagements.

Scope – We work with our clients to define which business systems must

PCI QSA

 be in-scope for the assessment

Analysis – We perform a gap analysis to understand which of the scoped systems are compliant and which are not

Remediation – We recommend appropriate security controls that will help you to achieve and maintain compliance

Validation – Once the remediation stage is complete we perform a final audit to confirm that the PCI-DSS standard is being met by all of the systems within scope

Support – We help you to maintain an information security policy, implement a programme of regular testing, and ensure that system changes do not compromise PCI-DSS compliance