We are currently looking for an additional PA-QSA for full-time employment. Must be a current PA-QSA. Obviously, a willingness to travel is needed. Contact me through the forum for additional details.

We are currently looking for an additional PA-QSA for full-time employment. Must be a current PA-QSA. Obviously, a willingness to travel is needed. Contact me through the forum for additional details.

If I'm not mistaken, the PA-QSA certification would only apply for a specific QSAC. If you recruit a PA-QSA, he/she would have to re-certify under your QSAC to maintain certification.

According to the PCI SSC, a current QSA or a PA-QSA can move from one QSAC to another without recertifying. I've asked this repeatedly at every recertification session and have been consistently told that as long as the two organizations are QSACs, the person moving does not lose their QSA/PA-QSA status as long as both offer the same certification services, i.e., PCI Report on Compliance and PA-DSS.

Interesting, I always understood it differently in my certification and re-certification...

I guess the nuance I didn't grasp was moving from a QSAC to a QSAC would be ok, while leaving a QSAC for a non QSAC would mean losing your QSA status...

Jeff is correct. I myself have done this.
Regardless, the intent is to find an individual that has current experience with the PA-DSS. Tough to find but we have an immediate need to augment our current staff of PA-QSAs.
Again, if you are interested or know someone who might be, please contact me.

I guess the nuance I didn't grasp was moving from a QSAC to a QSAC would be ok, while leaving a QSAC for a non QSAC would mean losing your QSA status...

You are correct.

Just to be clear. If a QSA or PA-QSA leaves a QSAC to go to work for another firm that is not a QSAC, then the person's QSA/PA-QSA certification terminates and they must recertify as well as having their new employer go through the application process with the PCI SSC to become an QSAC.

A nuance to the rule is that if a QSA or PA-QSA leaves a QSAC for another QSAC that is NOT registered to conduct PCI DSS or PA-DSS assessments respectively, then the QSA or PA-QSA loose their certification. It's rare to have a QSAC that does only PA-DSS certifications, but there are a couple. It is more likely for QSACs to do only PCI DSS assessments.