Press Release

Coalfire Adds International PCI Auditing Certifications to Help Organizations Protect Payment Card Data.

August 9, 2012

U.S.-based company is now able to perform PCI audits in Canada and the United Kingdom

Louisville, Colo. –– Aug. 9, 2012 ––Today, United States-based Coalfire Systems, Inc. announced it has expanded its certifications as a PCI Qualified Security Assessor (QSA) to now include Canada and the United Kingdom.

Each country has specific rules and regulations that vary for PCI compliance including requirements of the PCI QSAs for those countries. Through these additional certifications, Coalfire will be able to bring its recognized expertise in PCI compliance assessment and thought leadership to Canada and the United Kingdom.

Coalfire began conducting audits in each of the countries last month.

“PCI compliance is more than just a check in a box, it is necessary for organizations to help protect consumer credit card data,” said Rick Dakin, CEO, co-founder and chief security strategist of Coalfire. “Our expansion into Canada and the United Kingdom will extend our reach and valued expertise in the international cybersecurity community and ultimately help to protect more organizations from potential data breaches.”

Coalfire’s services are scalable in size to fit the requirements of any organization, from strategic audit planning and execution to tactical control audits aligned to annual audit plans. Coalfire security and compliance auditing services can help businesses plan and execute a PCI audit with precision and confidence.

About Coalfire

Coalfire is a leading, independent information technology Governance, Risk and Compliance (IT GRC) firm that provides IT audit, risk assessment and compliance management solutions. Founded in 2001, Coalfire has offices in Dallas, Denver, Los Angeles, New York, San Francisco, Seattle and Washington, D.C. and completes thousands of projects annually in retail, financial services, healthcare, government and utilities. Coalfire’s solutions are adapted to requirements under emerging data privacy legislation, the PCI DSS, GLBA, FFIEC, HIPAA/HITECH, NERC CIP, Sarbanes-Oxley, FISMA and FedRAMP. For more information, visit

Media Contact:
Alexandra Weissner