We are a PCI Security Standards Council Qualified Security Assessor (QSA) company with AWS certified staff that have in-depth knowledge of cloud security controls. Registered to conduct Report on Compliance assessments in Australia and the USA, we understand AWS services and the shared responsibility model.
Fintechs offering card payment solutions provide assurance to their customers and investors by being attested as a PCI DSS compliant level 1 service provider. Our Fintech experience and cloud expertise ensures your level 1 assessment is conducted effectively and you don’t spend unnecessary time explaining cloud services.
ISVs that provide services for entities with PCI DSS compliance obligations are often required to issue an AOC to their customers on an annual basis. Using a QSA with cloud expertise lets you fulfil your annual compliance assessment requirements effectively without having to educate your assessor on cloud services.
If your annual payment card transaction volumes categorise your business as a level 1 merchant (or your acquirer requests an onsite assessment), you will need to engage a QSA to assess your PCI DSS compliance. For cloud hosted online business, it is important that your QSA has deep knowledge of the cloud services that you use .
“Cloudtrace has consistently demonstrated exceptional performance and expertise. Their team of security professionals approach each assignment with a high level of skill and dedication. They have revealed valuable insights into our systems' vulnerabilities and provided actionable recommendations for improvement, often finding additional details missed by other partners”