The Citadel is seeking a certified Qualified Security Assessor, hereafter known as QSA, with higher education experience, to work with in attaining its goal of maintaining and continuing success with PCI DSS Compliance standards in an effective and efficient manner. The Contractor will be expected to produce an advisory report detailing any deficiencies found at The Citadel to include a timeline and work plan needed to achieve a successful filing of an Attestation of Compliance by October of each year; and provide guidance and detailed recommendations for improving current processes, policies, standards, and physical security requirements. The Citadel is a Level 3 merchant and is bound by SAQ (Self-Assessment Questionnaire) D. The offeror shall furnish all material, labor, and resources to provide a comprehensive PCI Data Security Standards (DSS) analysis covering all areas in scope for PCI DSS Compliance at The Citadel. The offeror shall be certified for all PCI DSS compliance services and have at least five years of documented experience. The scope of work for The Citadel assessment shall include any consulting work and/or scanning and intrusion testing services that will assist The Citadel in continuing PCI DSS compliance. The scope shall include a comprehensive plan for maintaining PCI DSS Compliance for future years
