ControlCase covers the following based on PCI SSC FAQs, blogs, and PCI SSC presentations from Community Meetings and other PCI SSC public events:
•Current status of PCI DSS (including information publicly available on PCI DSS ver. 4.0)
•PA DSS and upcoming Software Security Framework overview
•P2PE updates and new concepts
•PCI PIN, PCI 3DS and Card Production overview
•Chronological Time-frame for various standards
Organizations of all sizes rely on ControlCase’s certification and continuous compliance services to dramatically cut the time, cost and burden out of IT compliance.
Unlike traditional consulting firms, we bring a partnership approach versus an auditor mentality to every engagement. We go beyond the checklist and provide the expertise, guidance and automation needed to more efficiently and cost effectively demonstrate and maintain compliance.
Whether you're looking to satisfy regulatory requirements, meet customer demand or establish confidence with prospective customers, with ControlCase as your compliance partner, your workforce will be free to focus on their strategic priorities, and you’ll eliminate the hassle and reduce the stress associated with certification and continuous compliance.
Card production entities represent a large, high risk cache of payment card data demanding a specialized security program to mitigate that risk. There are two aspects to a card production security assessment – logical and physical. All systems and business processes associated with the logical security activities in card production and provisioning such as data preparation, pre-personalization, card personalization, PIN generation, PIN mailers, and card carriers and distribution are assessed using the Card Production and Provisioning Logical Security Requirements. Assessment against the Card Production and Provisioning Physical Security Requirements addresses the physical security requirements and procedures that entities must follow before, during, and after card manufacturing, chip embedding, personalization, storage, packaging, mailing, shipping and delivery of payment cards. To reflect these two different types of assessment there are two types of Card Production Assessor – Logical and Physical.