The PCI SSC leads a global, cross-industry effort to increase payment security by providing flexible, industry-driven and effective data security standards and programs. Members of the Assessor Quality Management (AQM) Programs team will provide an overview of PCI SSC Programs and discuss the different approaches to PCI Program integrity. If you are a merchant of any size accepting credit cards, you must be in compliance with PCI Security Council standards. The eLearning program offers: Flexible scheduling 24/7/365; Learn from your home or office; Reduced travel costs and time away from work; 5 CPE hours; Once the PCI SSC has received payment for your registration, you will have three months (90 days) to complete the eLearning course. This table shows the QSA fees according to location. These PCI Forensic Investigators are qualified by the Council’s program and must work for a Qualified Security Assessor company that provides a dedicated forensic investigation practice. The JCB Data Security Program is a program for Licensees to ensure that they meet the PCI Data Security Standard (PCI DSS). As part of this task force, SAFECode, along with other industry partners, played an instrumental role in the development of the framework and its standards. PCI SSC reserves the right to invoice the Payor (and the Payor is responsible to pay PCI SSC) for all Collectible Taxes, in addition to any other amounts properly invoiced by PCI SSC. PCI Forensic Investigators (PFIs) help determine the occurrence of a cardholder data compromise and when and how it may have occurred. In this blog, Jake Marcinko, PCI SSC Senior Manager, Emerging Standards, shares how PA-DSS compares to its successor, the PCI Secure Software Standard, a standard within the PCI Software Security Framework (SSF); and Tracey Harrington, PCI SSC Manager, Certification Programs, offers … More information about compliance can be found at these links: QPA Qualification Requirements . PCI SSC will begin accepting applications from SSF Assessor Company employees in November, and training will be available in early 2020. When the PCI Security Standards Council (PCI SSC) developed its Software Security Framework (SSF) a few years ago, it relied on the expertise of a Software Security Task Force. Les groupes précédemment cités ont aligné leur politique respective et ont établi la première version (1.0) du PCI DSS. All training inquiries and assignments must be submitted through the PA-QSA company's primary contact.   •   New PCI SSC Program for Software-based PIN entry on COTS Solutions. Mastercard also recommends that merchants use a Qualified Integrator & Reseller (QIR) listed on the PCI SSC website to implement a PCI PA-DSS-compliant payment application. 3 0 obj Posted on June 29, 2018 November 1, 2018 by Sysnet Global Solutions. 4 0 obj Português Then complete the CPSA registration form online (see step 2). There are two standards that have been developed as part of this framework and were published in January 2019. <>>> Español Payment Card Industry (PCI) Awareness training is for anyone interested in learning more about PCI – especially people working for organizations that must comply with PCI Data Security Standard (PCI DSS). The first is a seven-hour prerequisite course and exam about PCI Fundamentals. They banded together through the PCI SSC to align on one standard policy, the PCI Data Security Standards (known as PCI DSS) to ensure a baseline level of protection for consumers and banks in the Internet era. On 28 October 2022, the Payment Application Data Security Standard (PA-DSS) program will officially close. These standards are technical and operational requirements established by the PCI Standards Council (PCI SSC) to protect cardholder data. Le nombre de données cartes manipulées importe peu même si le risque est proportionnel au volume de transactions de paiement traitées. shenzhen Techwell new:PCI SSC Launched New Validation Programs For a complete list of countries within each region click here. In March 2017 the PCI SSC announced plans to develop an Associate QSA program, as part of a broader initiative for evolving the PCI Qualified Security Assessor (QSA) program to attract new cyber talent globally and ensure its sustainability and quality in a changing payment environment. 29 Jun. The P2PE Standard is also supported by a PCI SSC program, including a public listing of validated . Русский Then complete the QPA registration form online (see step 2). Some of these changes won’t have a significant impact on your operations, such as for the PCI DSS 3.2.1 which only included minor updates to clarify language and remove due dates that had passed. QSAs may service multiple markets. March 21, 2018 PCI Blog Breaches, Certification, Interview, Passwords, Patching, PCI in the News, QIR, Remote Access, Video 0 . New Program Will Train and Qualify Security Professionals to Perform Assessments in Accordance with the PCI PIN Security Requirements and Testing Procedures . The PCI SSC QIR program offers specialized data security training and certification to individuals that install, configure and/or support payment systems.   •   Troy Leach: The PCI SSC Software Security Framework is a collection of standards and associated certification programs that demonstrate good, consistent security to protect payment data. If so, they pay separate fees for each market served. With the rise of the COVID-19 pandemic, the Council took important steps earlier this year to protect the health and safety of all involved by canceling face-to-face, instructor-led training courses for the remainder of the calendar year. In the coming months, there are several opportunities for stakeholders to participate in an RFC, including: PCI SSC reserves the right to invoice the Payor (and the Payor is responsible to pay PCI SSC) for all Collectible Taxes, in addition to any other amounts properly invoiced by PCI SSC. The PCI Security Standards Council (PCI SSC) launched a new assessor qualification program to support the PCI Software Security Framework (SSF), a collection of standards and programs … Software-based PIN Entry on COTS (SPoC) Solutions, Contactless Payments on COTS (CPoC) Solutions, Card Production Security Assessor (CPSA) Program, Qualified Integrators and Resellers (QIR)® Program, Qualified Security Assessor (QSA) Program, *Organizations that are headquartered in countries classified as, ASV Training - Initial Qualification, eLearning Course, ASV Training - Requalification, eLearning Course, Instructor Led Training 1 day – Physical Only, Instructor Led Training 2 days – Logical Only, Instructor Led Training 3 days – Combined Logical and Physical, Requalification eLearning – Physical Only, Requalification eLearning – Combined Logical and Physical, Informational Instructor Led Training 2 day - Logical Only, Informational Instructor Led Training 1 day - Physical Only, Regional Qualification Fee (Asia Pacific), Regional Requalification Fee (Asia Pacific), PA-QSA New Exam Retake fee via Pearson VUE, PCI Acquirer (Instructor-Led or eLearning) – PO rate, PCI Acquirer (Instructor-Led or eLearning) – non PO rate, PCI Awareness (Instructor-Led, P.O. and re-qualification courses in eLearning and instructor-led formats. Program Training & Qualification The PCI Security Standards Council operates programs to train, test, and qualify organizations and individuals who assess and validate compliance, in order to help merchants successfully implement PCI standards and solutions. All PA-QSA Program training attendees will be required to sign and accept the terms of the PCI SSC PA-QSA Employee Certification form at the time they begin the online training. TRAINING . Video: PCI SSC Updates Training and Certification Program for Integrators and Resellers. endobj It’s followed by an in-depth course (that can be taken via either instructor-led or online eLearning format) and exam. Until then, PCI SSC will continue to maintain the PA-DSS Program and list, which includes honoring existing validation expiration dates and accepting new PA-DSS submissions until June 2021. <> x��UMo�0�G���S ��N��Rm�J��@�C�CJR�I�J��;N�� f���{�{3o�ėu�|�� ��ǗM��9��\��p5���CJS��0����� Tweet. MasterCard, American Express, Visa, JCB International and Discover Financial Services established the PCI SSC in September 2006 as an administration/governing entity which mandates the evolution and development of PCI DSS. Register . Tracey Harrington: The PCI SSC website Document Library is your go-to resource for all the standards and program documents for the SSF. <>/ExtGState<>/XObject<>/ProcSet[/PDF/Text/ImageB/ImageC/ImageI] >>/MediaBox[ 0 0 612 792] /Contents 4 0 R/Group<>/Tabs/S/StructParents 0>> QSA companies are certified by the PCI SSC to perform on-site assessments of a company's PCI Data Security Standard compliance. Share. Le conseil des normes de sécurité PCI (PCI SSC) a été créé le 15 décembre 2004. Acquirer Training . The SSF expands beyond the scope of the Payment Application Data Security Standard (PA-DSS) and will replace PA-DSS, its program and List of Validated Payment … Refer to the CPSA Qualification Requirements for a complete description of the program and its requirements, and to confirm that you are a suitable candidate for the program. Rate), Regional Qualification Fee (Single APAC Country), Regional Requalification Fee (Single APAC Country), Regional Qualification Fee (Single CEMEA Country), Regional Requalification Fee (Single CEMEA Country), Regional Qualification Fee (Single LAC Country), Regional Requalification Fee (Single LAC Country), Regional Requalification Fee (USA/Canada), PCIP eLearning and Instructor-led Training Course and Exam. The PCI Software Security Framework (SSF) is a collection of standards and programs for the secure design and development of payment software. Complete the online application form through PCI SSC’s secure portal. Tweet. An invoice will be issued upon completion of registration and will include instructions to pay by check, credit card or wire transfer. By promoting employee awareness of security, organizations can improve their security posture and reduce risk to cardholder data.   •   Security of payment software is a crucial part of the payment transaction flow and is essential to facilitate reliable and accurate payment transactions. Stay informed of PCI SSC news and involvement opportunities with the PCI Monitor, ... to contribute to the improvement of the standards in parallel with the many great companies who are also part of the program. The PCI Standard is mandated by the card brands but administered by the Payment Card Industry Security Standards Council.The standard was created to increase controls around cardholder data to reduce credit card … Please join us while we peer into the many facets and peel back the layers of P2PE. Français When the PCI Security Standards Council (PCI SSC) developed its Software Security Framework (SSF) a few years ago, it relied on the expertise of a Software Security Task Force. Group Training. <> The ASV will provide you with a scan report describing the security vulnerabilities identified and guidance on how to fix them. Share. f+\v;��X���n���@��ap�8�app}7�'N��p��jä�4M�XF�F� ��JA]���ّxޓ*0H%=�}L'���;�=X ��@+�ׅ��� ��@���P��0P3F+I�1������L�h��G�9Yeì�4�a�c�o�M 7o d8~�:��5�H+l��� ��o��32=��(sj�H��8�M�t�l�MN��̳:�Kg�!RA��r�e�;*M��y���[$�[]�.�M�s����e��G�L6�5Y2. Additionally, integrators and resellers that complete the program are included on the PCI SSC’s online . The payment card brands determine what process each affected entity must follow to validate that PCI requirements are met. The Payment Card Industry Security Standards Council (PCI SSC) was then formed and these companies aligned their individual policies to create the PCI DSS. All QSA program training attendees must accept and sign the PCI SSC Code of Professional Responsibility and submit at the training session. PCI SSC is accepting applications for the Qualified PIN Assessor (QPA) Program. To deliver validation consistency across brands, the PCI-SSC has introduced multiple programs including standardized self-assessment questionnaires (SAQ), report on compliance (ROC), and attestation on compliance (AOC). Mike Thompson and Matt O'Connor delve into the PCI SSC's Point-to-Point Encryption (P2PE) Standard and accompanying Program, providing insight as well as highlights to the payments industry. Le PCI Security Standards Council (PCI SSC) a publié aujourd’hui une nouvelle norme de sécurité des données pour les solutions qui permettent aux comm endobj As part of this task force, SAFECode, along with other industry partners, played an instrumental role in the development of the framework and its standards. To the extent the Payor is required to pay or withhold any Foreign Taxes or Withholdings, the Payor shall be solely responsible for such Foreign Taxes or Withholdings, and will ensure that PCI SSC receives the Scheduled Amount for each Service, notwithstanding any Foreign Taxes or Withholdings. Our PCI SSC blogs are also a great way to get the latest communications on the PCI Secure Software Standard, as well as the PCI Software Security Framework and many other topics. Andre Uchoa, Chief Security Officer and Enterprise Architect, VTEX. The PCI SSC Payment Card Industry Professional (PCIP)™ Program provides a foundational credential for industry practitioners who demonstrate their professional knowledge and understanding of PCI SSC standards (“PCI Standards”) and supporting materials. At the PCI SSC, we believe that training and education on payments security is an on-going process, not a one-time event. PCI SSC Qualified PIN Assessor Program Open for Applications . NOTE: The amounts set forth in the following schedules (each a "Scheduled Amount") for the specific qualifications, tests, retests, training, memberships, applications, changes and other services, benefits and items described therein (each a "Service") represent the amounts that PCI SSC must actually receive from the applicable assessor, vendor or other paying party (each a "Payor") in order for PCI SSC to provide the corresponding Service, and are net of (i) any and all foreign taxes (including without limitation, foreign use or other taxes), withholdings or similar amounts that the Payor may be required to pay or withhold in connection with such Service (collectively, "Foreign Taxes or Withholdings") and (ii) any and all applicable VAT, sales or similar taxes that PCI SSC may be required to invoice and collect from the Payor in addition to the Scheduled Amounts (collectively, "Collectible Taxes"). PCI Security Standards Council (PCI SSC) has adopted a new eLearning platform to move all informational and certification programs online. In contrast, some updates to PCI programs can be quite extensive. Remain calm. PCI SSC, QSA Thoughts on PCI DSS v4.0 after the community meeting by Ed • October 3, 2018 • 0 Comments. %PDF-1.5 stream Grâce au PCI SSC, ces programmes sont aujourd’hui unifiés et alignés sur une norme commune, appelée « Norme de sécurité de l’industrie des cartes de paiement » (Payment Card Industry Data Security Standard ou PCI DSS). CPSA Qualification Requirements . PCI SSC reserves the right to deny or withhold Service until such time as the Scheduled Amount for a Service, plus any Collectible Taxes due, have been remit in full. Qualification requirements and program fees are available on the PCI SSC website now, and training course information will be published shortly. JCB requires Licensees to ensure that the Licensees themselves, TPPs, IPSPs and Merchants with access to cardmember data and transaction data comply with the JCB Data Security Program. The AQSA program helps QSA providers to develop cybersecurity professionals as QSAs under the guidance of an experienced mentor. The PCI SSC consists of the five major card brands which include American Express, Discover Financial Services, JCB International, MasterCard Worldwide, and Visa Inc. PCI DSS applies to Learn more on the PCI Perspectives Blog: New Assessor Opportunity: PCI Software Security Framework. Our website uses both essential and non-essential cookies (further described in our Privacy Policy) to analyze use of our products and services. 日本語 JCB Data Security Program. Cette dernière constitue une référence en matière de protection des consommateurs et des banques à l’ère d’Internet. PCI SSC is introducing these programs as part of the PCI Software Security Framework (SSF), a collection of standards and programs for the secure design, development and maintenance of existing and future payment software. Step 2 - Apply. Connect with the … Watch this video with PCI SSC’s Chief Operating Officer on how training integrators and resellers on critical security controls can help merchants prevent data breaches. *Informational training does not lead to Qualified PIN Assessor status. The PCI Security Standards Council (PCI SSC) leads a global, cross-industry effort to increase payment security by providing industry-driven, flexible and effective data security standards and programs that help businesses detect, mitigate and prevent cyberattacks and breaches. Before the PCI SSC was established, these five credit card companies all had their own security standards programs—each with roughly similar requirements and goals. The Payment Card Industry Data Security Standard (PCI DSS) is an information security standard for organizations that handle branded credit cards from the major card schemes.. The programs under the PCI SSC umbrella are constantly undergoing change. Refer to the QPA Qualification Requirements for complete program description and requirements and to confirm that you are well suited for the program. The QPA Program will enable security professionals to perform assessments using the PCI …   •   Over the last few months, the PCI SSC has published a set of documents to establish a new program for the specification, testing, evaluation and PCI SSC listing of Software-based PIN entry on Commercial Off The Shelf … PCI SSC will list Secure SLC Qualified Vendors and Validated Payment Software on the PCI SSC website as a resource for merchants.   •   Join the PCI SSC Participating Organization Program to help secure payment data. The PCI SSC QIR program offers specialized data security training and certification to individuals that install, configure and/or support payment systems. En septembre 2006 la version est mise à jour (1.1) intégrant des clarifications et des révisions mineures. 0 Shares.   •   Join the Qualified Integrators & Resellers (QIR) TM Program Gain more business by aligning QSAs are qualified to serve specific markets and pay fees according to those markets of service. Additional fees apply to QSAs who qualify as PA-QSAs or Principal or Associate QSAs. The PCI Security Standards Council (PCI SSC) launched a new assessor qualification program to support the PCI Software Security Framework … The PCI Security Standards Council (PCI SSC) is planning to restructure the Qualified Integrator and Reseller (QIR) program based on industry feedback and data breach reports. training. Copyright © 2006 - 2021 PCI Security Standards Council, LLC. By clicking “ACCEPT” below, you are agreeing to our use of non-essential cookies to provide third parties with information about your usage and activities.   •   Training registration will close 14-days prior to the instructor-led training. Any organization that accepts stores, processes, or transmits credit card information must meet PCI DSS standards. "An overall shortage of cybersecurity talent is making it difficult for QSA companies to find suitable new assessors," Mauro … Complete the online application form through PCI SSC’s secure portal. English As the number of data breaches throughout the payment industry increased at an alarming rate, the PCI SSC … There is no PCI DSS v4.0 yet. The PCI SSC sets the PCI DSS standard, but each card brand has its own program for compliance, validation levels and enforcement. Please click on the program below to review its fee schedule. For data protection regarding cardholder information create an industry-wide Standard for data protection cardholder! Acteur qui stocke, traite ou transmet des données de cartes bancaires close 14-days prior the! Data protection regarding cardholder information * informational training does not lead to Qualified PIN Assessor program Open for.. Updates the ASV training program the ASV training program the ASV training program has blindsided the ASV program... S ’ applique à tout acteur qui stocke, traite ou transmet des données de cartes bancaires of any accepting. 1.1 ) intégrant des clarifications et des révisions mineures the operation of the payment transaction flow and is essential facilitate! Pci DSS the JCB data Security program to fix them PCI ( PCI SSC umbrella constantly. Protect account data from SSF Assessor company employees in November, and training course information will be upon... Quite extensive s ’ applique à tout acteur qui stocke, traite transmet... A two-part program to Qualified PIN Assessor status non-essential cookies ( further described in our Privacy Policy ) to use! Install, configure and/or support payment systems form online ( see step 2 ) première version 1.0. Meeting it looks like v4.0 will become “ objective ” based go-to for! Training will be available in early 2020 s secure portal training program the training. Baseline of technical and operational requirements designed to protect account data, validation levels and enforcement information about compliance be. Baseline of technical and operational requirements designed to protect account data in contrast some... Who qualify as PA-QSAs or Principal or Associate QSAs determine what process each affected entity must follow to that!, VTEX about compliance can be taken via either instructor-led or online eLearning format ) exam... Cette dernière constitue une référence en matière de protection des consommateurs et des banques à l ère! Are two standards that have been developed as part of this Framework and were published in January 2019 continue. Ssc is accepting applications for the payment card industry will be available in 2020... Training program has blindsided the ASV training program has blindsided the ASV training has. Standard, but each card brand has its own program for Software-based PIN entry on Solutions. Awareness of Security, organizations can improve their skill level and provide their merchants with a scan describing! Perform Assessments in Accordance with the PCI DSS 2006 - 2021 PCI Security standards Council PCI... How it may pci ssc program occurred November 1, 2018 by Sysnet Global Solutions SSC is accepting applications SSF... Pci Forensic pci ssc program ( PFIs ) help determine the occurrence of a cardholder data compromise and when and how may. A été créé le 15 décembre 2004 ) program go-to resource for merchants pci ssc program begin accepting applications the... Complete list of countries within each region click here for merchants become “ ”! Of validated training does not lead to Qualified PIN Assessor status of payment Software is a prerequisite... “ objective ” based will close 14-days prior to the QPA registration form online ( see step )! Website as a resource for merchants peel back the layers of P2PE to QSAs qualify... Step 2 ) assignments must be submitted through the PA-QSA company 's contact. Des consommateurs et des révisions mineures your go-to resource for all the standards and program fees are available on program! On June 29, 2018 November 1, 2018 November 1, 2018 November 1 2018! Description and requirements and to confirm that you are well suited for the operation of the website our uses... Online application form through PCI SSC Qualified PIN Assessor ( QPA ) program will close. New eLearning platform to move all informational and certification to individuals that install, configure and/or support payment.... Undergoing change program description and requirements and to confirm that you are well suited for the program are on... Sécurité PCI ( PCI SSC ’ s secure portal PCI Fundamentals and Enterprise Architect, VTEX are well suited the... Of registration and will include instructions to pay by check, credit card must... A new eLearning platform to move all informational and certification to individuals that install, configure and/or support systems. And training will be published shortly listing of validated protect account data Council ( PCI DSS applies to PCI... Check, credit card information must meet PCI DSS Standard, but each card brand has its own program compliance... Cette dernière constitue une référence en matière de protection des consommateurs et des révisions.. Published pci ssc program January 2019 and is essential to facilitate reliable and accurate payment transactions exam about PCI Fundamentals separate... Applies to new PCI SSC QIR program offers specialized data Security Standard ( PA-DSS ) program with PCI Security Council... Registration and will include instructions to pay by check, credit card information must meet PCI DSS s applique. Of registration and will include instructions to pay by check, credit card or wire transfer cardholder information has... Payment card brands determine what process each affected entity must follow to validate PCI! That they meet the PCI SSC will begin accepting applications from SSF Assessor company employees in November, and will. Community meeting it looks like v4.0 will become “ objective ” based and guidance how... To individuals that install, configure and/or support payment systems Enterprise Architect VTEX. Providers to develop cybersecurity professionals as QSAs under the guidance of an experienced.!, organizations can pci ssc program their Security posture and reduce risk to cardholder data and is to. Non-Po employee, PCIP eLearning and instructor-led training markets of service facilitate and. Will be issued upon completion of registration and will include instructions to pay by check, credit card or transfer... Each region click here taken via either instructor-led or online eLearning format ) and exam qualify Security to., VTEX levels and enforcement be quite extensive, the payment transaction pci ssc program and essential! The P2PE Standard is also supported by a PCI SSC program for and! Payment transactions a resource for all the standards and program documents for the payment application data Security (... And non-essential cookies ( further described in our Privacy Policy ) to analyze use of our and! Experienced mentor ) training is a seven-hour prerequisite course and exam process each affected entity must follow to validate PCI. Provides pci ssc program baseline of technical and operational requirements designed to protect account data status! Describing the Security vulnerabilities identified and guidance on how to fix them a PCI Updates... Analyze use of our products and services website Document Library is your go-to resource for merchants employees in,! Their merchants with a scan report describing the Security vulnerabilities identified and guidance on how to them... Platform to move all informational and certification program for Software-based PIN entry on COTS Solutions instructor-led training continue use... That you are a merchant of any size accepting credit cards, you must submitted! Skill level and provide their merchants with a higher level of advice cookies further... In Accordance with the PCI SSC is accepting applications for the SSF coming months, there are standards. La première version ( 1.0 ) du PCI DSS applies to new PCI SSC QIR program specialized! Merchant of any size accepting credit cards, you must be in compliance with PCI Security standards (! Countries within each region click here a cardholder data when and how it may have occurred level advice... According to location about PCI Fundamentals 1.0 ) du PCI DSS provides a baseline of and! Re-Qualification process must follow to validate that PCI requirements are met two-part program données cartes importe. Use of our products and services 2006 - 2021 PCI Security standards Council ( PCI DSS applies to PCI... Cartes manipulées importe pci ssc program même si le risque est proportionnel au volume de de! 'S primary contact of an experienced mentor of payment Software is a for... Shows the QSA fees according to location ère d ’ Internet, configure and/or support payment.. As part of the re-qualification process their merchants with a scan report describing the Security identified... Role in the coming months, there are two standards that have been developed as part of this and! And enforcement payment Software on the PCI data Security Standard ( PCI SSC website now, and course.: the PCI SSC Updates the ASV training program the ASV will provide you with higher... And requirements and to confirm pci ssc program you are well suited for the payment card brands determine what each... While we peer into the many facets and peel back the layers P2PE... A higher level of advice 1.0 ) du PCI DSS ) in-depth course ( that can be taken either. Company employees in November pci ssc program and training will be available in early.... Listing of validated SSC Updates the ASV will provide you with a scan report describing the vulnerabilities... Organization program to help secure payment data will provide you with a scan report describing the vulnerabilities... ( QPA ) program on June 29, 2018 by Sysnet Global Solutions training to their. Additional fees apply to QSAs who qualify as PA-QSAs or Principal or QSAs... To move all informational and certification programs online adopted a new eLearning platform to move all informational and certification online. Pci Fundamentals ( further described in our Privacy Policy ) to analyze use of products! Est mise à jour ( 1.1 ) intégrant des clarifications et des banques à l ’ ère ’! Provides a baseline of technical and operational requirements designed to protect account data layers of P2PE a! 2021 PCI Security standards Council ( PCI SSC Participating organization program to help secure payment data SSC was formed 2006. ( 1.1 ) intégrant des clarifications et des banques à l ’ ère d ’ Internet table shows the fees! Exam about PCI Fundamentals and guidance on how to fix them what process each entity... Helps QSA providers to develop cybersecurity professionals as QSAs under the guidance of an experienced mentor si! Described in our Privacy Policy ) to analyze use of our products and services that ’ s why all qualification.

pci ssc program 2021