Data Sheet: IT Compliance Payment Card Industry Data Security Standard



Similar documents
Payment Card Industry Standard - Symantec Services

Payment Card Industry Data Security Standard

Data Sheet: Endpoint Security Symantec Protection Suite Enterprise Edition Trusted protection for endpoints and messaging environments

The Impact of HIPAA and HITECH

Endpoint Security More secure. Less complex. Less costs... More control.

Symantec Endpoint Protection

Symantec Brightmail Gateway Real-time protection backed by the largest investment in security infrastructure

Symantec Enterprise Vault for Lotus Domino

Data Sheet: Messaging Security Symantec Brightmail Gateway Award-winning messaging security for inbound protection and outbound control

INFORMATION PROTECTED

Data Sheet: Endpoint Security Symantec Network Access Control Comprehensive Endpoint Enforcement

Data Sheet: Endpoint Security Symantec Endpoint Protection The next generation of antivirus technology from Symantec

Data Sheet: Endpoint Security Symantec Endpoint Protection The next generation of antivirus technology from Symantec

Managed Security Services D e l i vering real-time protection to help organizations st r e n g t h e n their security posture in the face of today s

Solution Brief: Enterprise Security

Small and Midsize Business Protection Guide

Symantec Protection Suite Small Business Edition A simple, effective and affordable solution designed for small businesses

Preparing for a Cyber Attack PROTECT YOUR PEOPLE AND INFORMATION WITH SYMANTEC SECURITY SOLUTIONS

Data Sheet: Archiving Altiris Server Management Suite 7.0 from Symantec Essential server management: Discover, provision, manage, and monitor

Barracuda Web Site Firewall Ensures PCI DSS Compliance

Data Sheet: Server Management Altiris Server Management Suite 7.0 Essential server management: Discover, provision, manage, and monitor

North American Electric Reliability Corporation (NERC) Cyber Security Standard

Symantec Security Compliance Solution Symantec s automated approach to IT security compliance helps organizations minimize threats, improve security,

Symantec Protection Suite Small Business Edition

Net Report s PCI DSS Version 1.1 Compliance Suite

2012 Endpoint Security Best Practices Survey

PCI-DSS Compliance. Ron Dinwiddie Chief Technology Officer J. Spargo & Associates

Information Security Services. Achieving PCI compliance with Dell SecureWorks security services

PCI Data Security Standards (DSS)

Symantec Messaging Gateway powered by Brightmail

Symantec Protection Suite Enterprise Edition for Servers Complete and high performance protection where you need it

How NETGEAR ProSecure UTM Helps Small Businesses Meet PCI Requirements

Data Sheet: Archiving Altiris Client Management Suite 7.0 from Symantec Deploy, manage, secure, and troubleshoot

Symantec Control Compliance Suite. Overview

WHITEPAPER. Achieving Network Payment Card Industry Data Security Standard (PCI DSS) Compliance with NetMRI

SYMANTEC MANAGED SECURITY SERVICES. Superior information security delivered with exceptional value.

Data Sheet: Endpoint Management Altiris Client Management Suite 7.0 Deploy, manage, secure, and troubleshoot

Symantec Endpoint Protection

PCI Security Compliance

Countering Insider Threats Jeremy Ho

Establish and Maintain Secure Cardholder Data with IBM Payment Card Industry Solutions

PCI Compliance. Top 10 Questions & Answers

WHITE PAPER. PCI Basics: What it Takes to Be Compliant

Click&DECiDE s PCI DSS Version 1.2 Compliance Suite Nerys Grivolas The V ersatile BI S o l uti on!

Data Sheet: Backup & Recovery Symantec Backup Exec 12.5 for Windows Servers The gold standard in Windows data protection

MANAGED SECURITY SERVICES

Q: What is PCI? Q: To whom does PCI apply? Q: Where can I find the PCI Data Security Standards (PCI DSS)? Q: What are the PCI compliance deadlines?

Data Sheet: Archiving Symantec Enterprise Vault for Microsoft Exchange Store, Manage, and Discover Critical Business Information

How To Comply With The Pci Ds.S.A.S

PCI Compliance Top 10 Questions and Answers

Data Sheet: Archiving Symantec Enterprise Vault Store, Manage, and Discover Critical Business Information

Maintaining PCI-DSS compliance. Daniele Bertolotti Antonio Ricci

How To Protect Your Computer From A Malicious Virus

The PCI DSS Compliance Guide For Small Business

Symantec Federal Solutions

The 12 Essentials of PCI Compliance How it Differs from HIPPA Compliance Understand & Implement Effective PCI Data Security Standard Compliance

FORT HAYS STATE UNIVERSITY CREDIT CARD SECURITY POLICY

PCI Compliance for Branch Offices: Using Router-Based Security to Protect Cardholder Data

Analyzing Security for Retailers An analysis of what retailers can do to improve their network security

Norton Personal Firewall for Macintosh

Symantec Critical System Protection Configuration Monitoring Edition Release Notes

Symantec Mobile Management 7.1

CORE Security and the Payment Card Industry Data Security Standard (PCI DSS)

Comodo HackerGuardian. PCI Security Compliance The Facts. What PCI security means for your business

PCI DSS COMPLIANCE DATA

Symantec Asset Management Suite 8.0

Achieving Compliance with the PCI Data Security Standard

Symantec Mobile Security

PCI DSS. Payment Card Industry Data Security Standard.

Symantec Enterprise Vault

A PCI Journey with Wichita State University

whitepaper 4 Best Practices for Building PCI DSS Compliant Networks

LogRhythm and PCI Compliance

PROTECTION OF OUR MERCHANTS AND REFERRAL PARTNERS IS OUR FIRST CONCERN

Symantec Mobile Management 7.1

Understanding PCI Compliance

The Modern Service Desk: How Advanced Integration, Process Automation, and ITIL Support Enable ITSM Solutions That Deliver Business Confidence

ARE YOU REALLY PCI DSS COMPLIANT? Case Studies of PCI DSS Failure! Jeff Foresman, PCI-QSA, CISSP Partner PONDURANCE

Symantec Encryption Solutions for , Powered by PGP Technology

Symantec Enterprise Vault for Microsoft Exchange

March

Accounting and Administrative Manual Section 100: Accounting and Finance

Security. Tiffany Trent-Abram VP, Global Product Management. November 6 th, One Connection - A World of Opportunities

Josiah Wilkinson Internal Security Assessor. Nationwide

* Any merchant that has suffered a hack that resulted in an account data compromise may be escalated to a higher validation level.

Devising a Server Protection Strategy with Trend Micro

Merchant guide to PCI DSS

Two Approaches to PCI-DSS Compliance

Payment Card Industry Data Security Standard (PCI DSS)

PCI Compliance: How to ensure customer cardholder data is handled with care

PCI DSS Top 10 Reports March 2011

Symantec ServiceDesk 7.1

INSIDE. Securing Network-Attached Storage Protecting NAS from viruses, intrusions, and blended threats

CHEAT SHEET: PCI DSS 3.1 COMPLIANCE

How To Become A Pca Compliant Organization

Symantec Messaging Gateway 10.5

Symantec Messaging Gateway 10.6

Need to be PCI DSS compliant and reduce the risk of fraud?

Cyber Security Services: Data Loss Prevention Monitoring Overview

PCI DSS READINESS AND RESPONSE

Transcription:

The (PCI, or PCI DSS) was developed by the PCI Security Standards Council to assure cardholders that their details were secure during payment card transactions. The Council, which now governs the Standard, was founded by a group of major payment card providers (VISA, MasterCard, JCB, Discover and American Express). It provides a single consistent standard for the protection and security of sensitive cardholder data. Demonstrating PCI compliance is a continuous process, validated annually: Assess Remediate Report, and hence requires a sustainable compliance program. What is the scope of Payment Card Industry Security Standard? The PCI standard represents security best practices and is wide ranging, detailed and prescriptive. It makes a number of demands in areas including IT infrastructure, security policies and data encryption. The standard is organized into 6 categories of 12 security requirements. These are listed below: Page 1 of 5

Who is affected? Any merchant, service provider or other organization that stores, processes or transmits cardholder (Primary Account Number) data is required to implement PCI. Non-compliance can result in fines and other penalties, including forfeiture of the right to process card transactions, perhaps permanently. In addition, non-compliance can invite the attention of damaging negative publicity, lawsuits, loss of business and market share. What is the current driver? In September 2008 Visa Europe released revised guidelines for penalties that will affect merchants and service providers post data security breach. These penalties apply to all levels of merchants and service providers but are predominantly focused at driving compliance for e-commerce merchants in the level 2, 3 and 4 categories. The scale of the penalties has resulted in many smaller merchants directly addressing PCI compliance and looking to external organizations to help them become compliant through consultancy services. Symantec products for Often when customers contact Symantec regarding products to help with PCI compliance, they have a specific pain point in mind that relates directly to a particular requirement of the PCI standard. For example, they may have an issue with centralised log management (which relates to requirement 10 of the PCI standard), securing critical assets (which relates to requirements 2, 8, 10 & 12) or policy creation and management (which relates to requirement 12). Symantec has a range of products to help with these issues. To make it easier for customers to identify the correct product or products, Symantec has mapped each of its products against the PCI standard. The table below shows the mapping of some customer s requirements to Symantec products and how they relate to the PCI standard. Page 2 of 5

How can Symantec help? Symantec Product Definitions Symantec Endpoint Protection Symantec Endpoint Protection combines Symantec AntiVirus with advanced threat prevention to deliver unmatched defense against malicious attacks for laptops, desktops and servers. Symantec Critical System Protection Symantec Critical System Protection provides proactive Host Intrusion Protection through exploit prevention, endpoint controls, along with Host Intrusion Detection based security monitoring and auditing to help ensure server integrity and compliance across heterogeneous platforms. Symantec Security Information Manager Symantec Security Information Manager enables organizations to apply a documented, repeatable process for responding to security threats and addressing IT policy compliance via a comprehensive incident management program. Page 3 of 5

Symantec Control Compliance Suite Symantec Control Compliance Suite provides end-to-end coverage for the IT compliance lifecycle, including policy management, technical and procedural controls assessment, reporting and remediation. Symantec Brightmail Gateway The Symantec Brightmail Gateway delivers inbound and outbound messaging security for email and IM, with effective and accurate antispam and antivirus protection, advanced content filtering, and data loss prevention technology. Symantec Network Access Control Symantec Network Access Control is a complete end-to-end network access control solution which securely controls access to corporate networks, enforces endpoint security policy and easily integrates with all existing network infrastructures. Symantec Data Loss Prevention Symante Data Loss Prevention enables customers to discover and mange data whether it is stored on the network or on a disconnected endpoint, as well as prevent data from exiting any network gateway or endpoint. Symantec DeepSight Services Symantec Global Intelligence Services provide insight into the latest global, industry and local threats and attacks so organizations can respond proactively to emerging threats. Symantec Enterprise Vault Symantec Enterprise Vault is the industry's leading platform for archiving from email, file system, and collaborative environments. Symantec Managed Security Services (IDS/firewalls etc.) Symantec Managed Security Services delivers real-time security protection, helping organizations establish compliance, minimize business impact, and reduce overall security risk at acceptable cost in the face of today's emerging threats. Altiris Product Family from Symantec The Altiris product family addresses four fundamental components of lifecycle management: Client management, server management, service desk and IT asset management. Summary PCI is critical to many customers today PCI compliance cannot be ignored Symantec products help customers to achieve a sustainable and cost-effective response to PCI compliance requirements Symantec products are backed by Symantec s considerable breadth and depth in security consultancy, managed security services, industry-leading security research, security assessments, and best-in-class IT products Page 4 of 5

Visit our website www.symantec.com/pci To speak with a Product Specialist in the U.S. Phone: +44 (0) 118 943 6363 To speak with a Product Specialist outside the U.S. For specific country offices and contact numbers, please visit our website. About Symantec Symantec is a global leader in providing security, storage, and systems management solutions to help businesses and consumers secure and manage their information. Headquartered in Cupertino, Calif., Symantec has operations in more than 40 countries. More information is available at www.symantec.com. Symantec World Headquarters 20330 Stevens Creek Blvd. Cupertino, CA 95014 USA +1 (408) 517 8000 1 (800) 721 3934 www.symantec.com Copyright 2009 Symantec Corporation. All rights reserved. Symantec and the Symantec logo, Altiris,AntiVirus, DeepSight, and Enterprise Vault are trademarks or registered trademarks of Symantec Corporation or its affiliates in the U.S. and other countries. Other names may be trademarks of their respective owners. 02/09 20011544 Page 5 of 5

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information