Frequently Asked Question

Are software vendors wishing to undergo validation to the PCI Secure Software Lifecycle (Secure SLC) Standard also required to have payment software listed or in the process of being validated to the PCI Secure Software Standard?
It is not necessary for a software vendor to have payment software listed or in the process of being validated to the PCI Secure Software Standard in order to become a Secure SLC qualified vendor.
May 2020
Article Number: 1477
Related
-
Are currently listed PA-DSS payment applications required to be revalidated using the Secure Software Standard?
-
Are there prerequisite PCI SSC program requirements to meet before qualifying as an SSF Assessor Company?
-
Are Secure Software Assessors or Secure Software Lifecycle Assessors required to report Continuing Professional Education (CPE) credits to PCI SSC?
Featured FAQ Articles
Most Recently Updated
-
Is the expectation that any PFI investigation initiated must result in a PFI Final Report?
-
Can SAQ eligibility criteria be used for determining applicability of PCI DSS requirements for assessments documented in a Report on Compliance?
-
Do PCI DSS requirements for keyed cryptographic hashing apply to previously hashed PANs?