End of preview
Want to read all 2 pages? Upload your study docs or become a member.
Unformatted text preview:approved by the PCI SCC. The professionals mandated to perform QSA must demonstrate knowledge and experience as far security assessments are concerned. The practitioners must be a holder of one or more security certification that is relevant and recognized by the industry together with substantial experience. At least one year of experience in various information security disciplines including application, information systems and network securities. Attending annual training programmes and taking exams designed by the PCI for the training is also essential. Failure in any of the exams means the practitioners must take another assessment before being approved to practice. Reference Schoenfield, B. S. E. (2015). Securing Systems: Applied Security Architecture and Threat Models . Taylor & Francis Group, LLC CRC Press is an imprint of Taylor & Francis Group, an Informa business.