CSOonline polled security experts who have performed and received assessments in an effort to create a brief checklist for getting the company-QSA relationship off to the best possible start. One common problem is that the QSA is chosen too hastily because the company wants to get the process over with as quickly as possible. Security experts say companies must conduct a thorough vetting of all QSA providers to ensure whoever is chosen specializes in the problems most common in their particular industry. A lack of planning can get a company’s security assessment off to a bad start.”]
Source: https://www.csoonline.com/article/2124345/4-ways-to-get-the-most-from-your-pci-qsas.html