Frequently Asked Questions

< Back to search page

How does my company become a qualified assessor (QSA, PA-QSA, QSA (P2PE), PA-QSA (P2PE)), or Approved Scanning Vendor (ASV)?

FAQ Response

The PCI Security Standards Council (PCI SSC) maintains a robust evaluation and qualification program for approved security assessors and scanning vendors. Information on becoming a qualified assessor or scan vendor company may be found on the PCI SSC Website, as well as a current listing of approved assessor and scanning companies. The web site also contains information about renewal processes for existing assessor (QSA, PA-QSA, QSA (P2PE), PA-QSA (P2PE)) and ASV companies. Inquiries may also be sent to the following email addresses:

March 2011
Article Number 1177