Payment Application QSAs
Payment Application Qualified Security Assessor (PA-QSA) companies are organizations that have been qualified by the Council to have their employees assess compliance to the PCI PA-DSS standard. Payment Application Qualified Security Assessors are employees of these organizations who have been certified by the Council to validate an entity’s adherence to the PCI PA-DSS.
Please note, the PCI Security Standards Council maintains an in-depth program for security companies seeking to be certified as Payment Application Qualified Security Assessors (PA-QSAs), as well as to be re-certified as PA-QSAs each year.
Certification and re-certification indicate only that the applicable PA-QSA has successfully met all PCI Security Standards Council requirements to perform PCI data security assessments, and the PCI Security Standards Council does not endorse these security solution providers or their business processes or practices.
Although the PCI Security Standards Council strives to ensure that the list of Payment Application Qualified Security Assessors linked to this page is current, the list is updated frequently and the PCI Security Standards Council cannot guaranty that the list is current at all times. Accordingly, each time a client engages a PA-QSA, the client is advised to check this list on a regular basis to ensure that its PA-QSA has successfully maintained its status as a Payment Application Qualified Security Assessor.
| Company | Place of Business | Primary Contact |
Servicing Markets |
Supported Languages |
|---|---|---|---|---|
| 403 Labs, LLC | USA, LAC | Brad Lutgen blutgen@403labs.com +1 877 403 5227 ext. 14 |
USA | English, Spanish, Portuguese, French, German |
| Accuvant Inc. | USA | Brian Serra bserra@accuvant.com -5107 |
USA | Englisch |
| Acertigo AG - An EXCELSIS Company | Germany, Luxembourg, Switzerland | Henrik Jan Schmidt henrik-jan.schmidt@acertigo.com +49 711 62030 206 |
Europe | Arabic, English, French, German, Spanish |
| Ambersail Ltd. | UK | Jon Morris jon.morris@ambersail.com T - 44-0-1925-600-062 |
Europe | Englisch |
| Arsenal Security Group | USA | Michele Lorah mlorah@arsenalsecuritygroup.com |
USA | Englisch |
| AT&T Consulting Solutions | Australia, UK, USA | Gina Codi PCI@ATT.COM +1 410-980-5310 |
CEMEA, Canada, Europe, LAC, USA, Asia Pacific | English, Spanish, French, Chinese (Mandarin), Dutch, German, Serbian, Croatian, Montenegro, Bosnian, Herzegovina, Macedonian, Slovenian, Hebrew |
| Atsec Information Security Corporation | USA | Jeff Jilg (USA) +1 512-615-73oo Jeff@atsec.com Yan Liu (China) -82892925 info_cn@atsec.com Andreas Siegert (Europe) PCI-INFO@atsec.com + 49 8944249830 |
China, Germany, Sweden, USA | English, French, German, Italian, Mandarin, Spanish, Swedish |
| Chief Security Officers **In Remediation** |
USA | Kenneth Rowe krowe@chiefsecurityofficers.com -4371 |
USA | English, Spanish |
| Coalfire Systems, Inc | USA | Kennet Westby Kennet.westby@coalfiresystems.com 206-352-6028 x7502 Dan Fritsche Dan.fritsche@coalfiresystems.com 303-828-2565 |
USA | Englisch |
| CompliancePoint, Inc. | USA | Jeff Brown qsa@compliancepoint.com +1 678-287-7744 |
USA | Englisch |
| Comsec | Europe, Israel | Ran Dagan rand@comsecglobal.com +1 972-3-9234646 (Israel) 31-10-2881010 (Netherlands) 90-212-3654860 (Turkey) 44-20-74839180 (UK) 45-3635-0070 (Denmark) 358 20 4362 000 (Finland) |
Europe | Danish, Dutch, English, Finnish, Hebrew, Portuguese, Turkish |
| Control Case | Dubai, India, Kuwait, USA | Kishor Vaswani (US) kvaswani@controlcase.com T - 1 - 703-483-6383 Suresh Dadlani (India and Philippines) sdadlani@controlcase.com T+91-9820293399 Nicola Phillips (United Kingdom) nphillips@controlcase.com T+44 845 4524168 Afy Merchant (Dubai, Saudi Arabia UAE, GCC) amerchant@controlcase.com T 971-504826765 Daigo Mori (Japan) dmori@controlcase.com T 81-3-5649-6473 Rukman Suriawarsita (Indonesia and Singapore) rsuriawarsita@controlcase.com T+62-81808037776 Mostafa Ibrahim (Egypt) mibrahim@controlcase.com 20168843998 Kamesh Ganeson (Malaysia) kganeson@controlcase.com T (+6012) 913 4183 Aru David (Vietnam) adavid@controlcase.com T +84 908 069161 Timal Jayamanne (Sri Lanka) tjayamanne@controlcase.com T +94777377107 Mitch Mercado (Manila, Philippines) mmercado@controlcase.com T: +639153229517 Carl Persson (Sweden) cpersson@controlcase.com T: 08 615 14 02 Faith Emiral (Turkey) femiral@controlcase.com T: 532 306 3089 Sasa Bart (Croatia, Herzegovina, Slovenia, Bosnia, Serbia, Montenegro, Macedonia, Kosovo, Albania) sbart@controlcase.com T: +385 1 3640 884 Martyn Richards (Ireland) mrichards@controlcase.com T: 014428605 Karolien Holsters (Kuwait) kholsters@controlcase.com T: +965 97251211 |
CEMEA, USA, Asia Pacific | Arabic, English, Japanese, Spanish, Hindi, Korean, Russian |
| Control Gap | Canada | Bruce Duff pci@controlgap.com -10317 |
Canada | Englisch |
| Cybercom Group | Sweden | Bengt Berg Bengt.berg@cybercomgroup.com -459404 |
Europe | English, Swedish |
| Cybsec | Argentina, Ecuador, Panama, Paraguay | Omar Staiano ostaiano@cybsec.com 54-11-4371-4444 |
LAC | English, Portuguese, Spanish |
| Datassurant | Canada, USA | Michael La Barge pa-dss@datassurant.ca (Canada) 800-930-5461 Michael La Barge pa-dss@datassurant.com (USA) 800-724-8197 |
USA, Canada | English, French, German, Spanish |
| Deloitte Touche Tohmatsu - New Zealand | New Zealand | Ian Perry iperry@deloitte.co.nz t - 64-4-495-3917 |
Asia Pacific | Englisch |
| Digital Resources Group | USA | James Cowing pci@drgsf.com 650-595-9700 |
USA | Englisch |
| Digital Security | Russia | Alexandra Golik alexandra@dsec.ru +7 812-703-1547 |
CEMEA | English, Russian |
| FishNet Security | USA | Mark Carney pci@fishnetsecurity.com +1 888-732-9406 |
LAC, USA, Canada | Englisch |
For information about the status of a particular QSA, please contact that QSA.
AP – Asia Pacific CEMEA – Central Europe, Middle East, and Africa LAC – Latin America and the Caribbean