What are the pros and cons of using a third-party organisation?

Pros include impartiality, knowledge of the Standard and expectations of certification body assessors, auditing expertise and qualifications, experience of auditing other similar organisations, and availability.

Cons include less organisational knowledge, (although this could sometimes be considered an advantage as it is less likely that assumptions will be made ) and cost.

No items found.
"
Our URM QSA always consults with the aim of making compliance as straightforward as possible, and pointed us towards a way of significantly minimising and streamlining our assessment scope that neither we nor our previous PCI DSS consultancy provider had considered.
CISO at University of Surrey
contact US

Let us help you

Let us help you in your compliance journey by completing the form and letting us know how we can best support you.