Frequently Asked Question

Who is qualified to perform assessments to the PCI Secure Software Standard?

Secure Software Assessors are qualified by PCI SSC to validate payment software adherence to the Secure Software Standard.

Qualified Secure Software Assessors will have the Assessment Type of "Secure Software" noted in their listing in the PCI SSC list of Software Security Framework Assessors.

See also the following FAQs:
FAQ 1538: What is the process to initiate a software evaluation to the PCI Secure Software Standard?
FAQ 1540: What software is eligible for validation to the PCI Secure Software Standard?

Originally published: November 2021
Article Number: 1539

Featured FAQ Articles