Enough of PCI, how do we get our company out of scope? For years now, your organization has been working on achieving and maintaining PCI compliance. Year after year, a Qualified Security Assessor (QSA) comes on-site to assess your environment. Sometimes, if you’re lucky, that QSA is the same person