• Skip to primary navigation
  • Skip to main content
  • Skip to footer
ControlCase No Tag LOGO md

ControlCase

IT Certifications, Continuous Compliance and Cybersecurity Services Provider

  • Company
    • About Us
    • Careers
    • Locations
    • Team
  • Industries
    • Business Process Outsourcing
    • Cloud Service Providers
    • Retail
    • Telecom | Entertainment
    • Managed Service Providers
  • Certifications
    • PCI DSS Certification
    • CSA STAR Certification
    • GDPR Assessment
    • HIPAA Assessment
    • HITRUST Certification
    • ISO 27001 Certification
    • FedRAMP 3PAO Services and NIST 800-53
    • CMMC Compliance: NIST 800-171
    • MARS-E Assessment
    • PCI SSF
    • P2PE Certification
    • SOC2 Report
  • Solutions
    • Continuous Compliance Solution
    • One Audit
    • Card Data Discovery Software
    • Data Security Rating
  • Testing
    • Application Reviews
    • Application Security Training
    • Code Reviews
    • Card Data Discovery
    • External Vulnerability Scans
    • Firewall Security Reviews
    • Internal Vulnerability Scans
    • Log Monitoring
    • Penetration Testing
  • Resources
    • Events
    • News
    • Webinars
    • Courses
    • Newsletters
    • Blog
    • Tools
  • Contact Us

PCI SSF

request datasheetrequest quoterequest demo
You are here: Home > Certifications > PCI SSF

STREAMLINE PCI SSF COMPLIANCE

6 OF THE TOP 10 RETAILERS USE CONTROLCASE TO HELP WITH COMPLEX PCI ASSESSMENTS.

ControlCase’s unique, tested, and proven process-based Payment Products Assessment and Certification provides a seamless customer experience.

  • Audit Visibility via Compliance Hub
  • |
  • Skilled Technical Team
  • |
  • State-of-the-art Payment App. Lab
  • |

About the Regulation

The PCI Software Security Framework (SSF) is a collection of standards and programs for the secure design and development of payment software. Payment software must be designed, developed, and implemented securely to facilitate reliable and accurate payment transactions.

The SSF replaces the Payment Application Data Security Standard (PA-DSS) with updated security controls and requirements that support a broader array of payment software types, technologies, and development methodologies. PCI SSF consists of two standards:

Secure Software Standard (SSS)

Intended for payment software that is sold, distributed, or licensed to third parties. Includes payment software to be installed on customer systems and deployed to customers “as a service” over the internet.

Secure Software Lifecycle Standard (SSLC)

A set of security requirements and associated test procedures for software vendors to validate how they properly manage the security of payment software throughout the software lifecycle.

Major ControlCase Benefits

  • Certification tracking mechanism using ControlCase Compliance Hub
  • State-of-the-art lab for payment application testing
  • Team of skilled technical professionals
  • In-depth knowledge of payment ecosystems combined with an advanced skill-set
  • Experience in handling complex and heterogeneous software implementations
  • Document templates repository

Why ControlCase

1,000+ Customers
10,000+ IT Security Certifications
100+ BPO Customers
icon

CONSULTATIVE AND PARTNERSHIP APPROACH

Unlike traditional firms, we bring a partnership approach versus an auditor mentality to every engagement. We provide the expertise, guidance and automation needed to more efficiently and cost effectively demonstrate compliance to regulations including SOC 1, SOC 2, PCI DSS, HITRUST, FedRAMP, NIST 800-53, and ISO 27001.

icon

INVESTMENT IN TECHNOLOGY

Over the past decade ControlCase has invested in simplifying regulatory compliance through efficient questionnaires within the ControlCase Compliance Hub™ platform. We have also automated evidence collection for more than half of those questions. Additionally, we have operationalized workflows to make compliance business as usual (continuous compliance) instead of an annual one-time audit.

icon

CONTINUOUS COMPLIANCE MANAGEMENT

We learn your environment and become experts at recommending process improvements and identifying compliance risks before they become security threats. Finally, we assist our customers to address common non-compliant situations that can leave companies vulnerable throughout the year.

Hear it from our customers

We are required to comply with PCI DSS, ISO 27001 and SOC 2 across multiple locations. The ControlCase “Compliance Hub” platform really simplified the entire process.

  • monetique
  • siriusxm
  • wipro
  • wns

Related Content

changes to ISO 27001 in 2022
Blog

Important Changes to ISO 27001 in 2022

Learn about the new changes to ISO 27001, what they are, and what they mean for your business.
Learn about the new changes to ISO 27001, what they are, and what they mean for your business.
Read More
What is ISO 27001
Blog

What is ISO 27001? A detailed, simple, and straightforward guide

ISO 27001 is the leading international standard for information security. In this guide, we will discuss the importance and purpose of ISO 27001, along with ISO 27001 requirements and more.
ISO 27001 is the leading international standard for information security. In this guide, we will discuss the importance and purpose of ISO 27001, along with ISO 27001 requirements and more.
Read More
HIPAA
Blog

HIPAA Compliance Basics

Learn more about keeping health information and data secure through HIPAA Compliance. In our most recent blog post, the ControlCase experts examine what is HIPAA, who must comply, violation examples, and other topics and FAQs.
Learn more about keeping health information and data secure through HIPAA Compliance. In our most recent blog post, the ControlCase experts examine what is HIPAA, who must comply, violation examples, and other topics and FAQs.
Read More

Request for Services

Find out how we can help your organization navigate and satisfy your IT Certification, Compliance/Regulation, and Cybersecurity requirements. Let us know your areas of interest so we can provide services to fit the needs of your organization.

  • This field is for validation purposes and should be left unchanged.
  • Facebook
  • LinkedIn
  • Twitter
  • YouTube

Footer

Connect

Corporate Headquarters
Fifty West Corporate Center
3975 Fair Ridge Drive, Suite D T25s, Fairfax, VA 22033

Send us a message

Call Us

About Us

ControlCase is a United States based company, headquartered in Fairfax, Virginia with locations in North America, Europe, Latin America, Asia/Pacific and the Middle East to serve our clients globally.

Quick Links

  • Company
  • Team
  • Careers
  • Locations
  • Covid-19 Notice

Certifications, Assessments and Reports

  • PCI DSS Certification
  • CSA STAR Certification
  • GDPR Assessment
  • HIPAA Assessment
  • HITRUST Certification
  • ISO 27001 Certification
  • FedRAMP and 3PAO Services
  • MARS-E Assessment
  • PCI SSF
  • P2PE Certification
  • SOC2 Report

© ControlCase LLC 2023 | Privacy Policy | Impartiality Statement | Legal Notices