ControlCase to provide Microsoft SSPA Attestation Services

ControlCase, a leading global provider of Compliance as a Service (CaaS), Certifications, and IT Governance, Risk and Compliance (GRC) software is pleased to announce it now offers assessment and attestation services to fulfill requirements for Microsoft’s Supplier Security and Privacy Assurance program (SSPA). This marks the latest development in ControlCase’s market leading portfolio of services.

The Microsoft SSPA program is ensures baseline privacy and security principles are followed when Microsoft suppliers handle Microsoft customer, partner and employee personal information and Microsoft sensitive information. All Microsoft suppliers who work with Microsoft personal or sensitive information are required to demonstrate compliance with Microsoft’s Data Protection Requirements (DPR) on an annual basis.

“With organizations creating and sharing extraordinary volumes of data through various technology, maintaining strong governance posture can be challenging,” said Kishor Vaswani, CEO of ControlCase.
“ControlCase SSPA attestation services are developed to incorporate ControlCase’s extensive experience in risk management and regulatory compliance management; delivering a streamlined and cost effective solution to achieve compliance in a timely manner.”

Features of the ControlCase Microsoft SSPA Attestation Services include:
• Automated evidence gathering for audits and overall process controls
• Efficiency for managing remediation activities by task/ resource
• Dashboards and flexible reporting
• Management of documents and policies that can be applied to almost any process flow

"We continue to strengthen our products and offerings; reinforcing our commitment to information security and risk management for our clients," said Vaswani.
“The SSPA services will offer an exceptional level of customer experience with a keen focus on precision.”

About ControlCase
ControlCase is a global provider of Compliance as a Service (CaaS), Enterprise Software and Services. Our offerings enable clients to effectively manage their IT Governance, Risk Management and Compliance Management (IT GRCM or GRC) efforts.
Headquartered in the United States, with locations in North America, Europe, Asia Pacific and the Middle East, ControlCase focuses on providing and developing services, software products, hardware appliances and managed solutions that focus on compliance regulations and standards; including PCI DSS, SOC1, SOC2, SSAE16, PIPEDA, ISO 27001/2, FERC/NERC, Sarbanes Oxley (SOX), GLBA, HIPAA/HITRUST, CoBIT, BITS FISAP SIG/AUP and EI3PA.
For more information, please visit the company website at www.controlcase.com