Press Release

Coalfire Makes PCI History with First Security Standards Council Assessment

August 12, 2020

The Beginning of the End for PA-DSS Security Standard Will Impact Millions of Businesses Worldwide

WESTMINSTER, CO – August 12, 2020 – Coalfire, the first cybersecurity firm accredited by the Payment Card Industry Security Standards Council (PCI SSC) to perform assessment certifications within the new Software Security Framework/Secure Software Lifecycle (SSF/SLC) standard, today announced the completion of the industry’s first qualified assessment. Coalfire is the world leader in Payment Application security assessments and the first assessment firm to adopt the new Software Security Framework through the assessor certification process with the PCI Security Standards Council.

This historic Coalfire assessment validates the new PCI compliance standard that is set to replace the sunsetting Payment Application Data Security Standard (PA-DSS) in October 2022 and begins the transition toward software security resiliency to protect payment data across all transaction platforms.

“This milestone assessment will now lead the rapid adoption of next-generation PCI cyber standards,” said Nick Trenc, SSF practice leader at Coalfire. “The first SSF/SSLC assessment marks the beginning of a new era in payment data protection and the chance for early-adopter merchants and developers to stay ahead of the competition.”

Also, of historic note, the assessment was conducted remotely in line with PCI SSC’s guidance due to the pandemic. “These new processes represent the future of secure commerce,” said Trenc. “We’re honored to work with the PCI Council and industry leaders, and we share their dedication to setting new standards in defending against cybercrime.”

About the PCI SSC

The PCI SSC is a worldwide forum that leads cross-industry efforts to increase payment security by providing flexible and effective standards and programs that help businesses detect, mitigate, and prevent cyber attacks and breaches. PCI SSC maintains programs for security companies seeking to be certified as Payment Application Qualified Security Assessors (PA-QSAs). Coalfire was one of the original PA-QSA firms with more than 10 years in the program.

About Coalfire
Coalfire is the trusted cybersecurity advisor that helps private and public sector organizations avert threats, close gaps and effectively manage risk. By providing independent and tailored advice, assessments, technical testing and cyber engineering services, we help clients develop scalable programs that improve their security posture, achieve their business objectives and fuel their continued success. Coalfire has been a cybersecurity thought leader for nearly 20 years and has offices throughout the United States and Europe.


For media inquiries:

Mike Gallo
(212) 239-8594