Enterprise gateway security provider Secure Computing has unveiled the company’s new Payment Card Industry (PCI) Initiative, a multi-faceted program aimed at providing global organizations with the information, tools and best-of-breed solutions they need to comply with the new PCI Data Security Standard (DSS).
Deadline dates for compliance are imminent, with the first 6.6 requirement of installing an application-layer firewall in front of all Web-facing applications taking effect June 30, 2008.
PCI DSS is a widely accepted set of policies and procedures intended to optimize the security of credit, debit and cash card transactions and protect cardholders against misuse of their personal information. PCI DSS was created jointly in 2004 by Visa, MasterCard, Discover and American Express. It clearly outlines the 12 key requirements with which companies processing, storing, or transmitting payment card data must comply or risk losing their payment processing abilities. Merchants and payment card service providers must validate their compliance periodically with auditors.
“With the recent rise in data breaches containing credit card information and the alarming increase in identity thefts, the implementation of a sound information security program is no longer optional,” said Chris Christiansen, vice president of Security Products and Services, IDC.
“Companies processing credit card information must embrace and implement solid data protection strategies to ensure the confidentiality and integrity of their customers’ confidential information. The cost of compliance is far less expensive than the cost of remediation, which more often than not also includes the high price of lost public confidence and overall brand equity.”
With the deadline dates for compliance with PCI DSS looming, payment processing companies must implement solutions to protect their customers’ personal data. Secure Computing offers a suite of integrated and secure solutions to help companies comply with all of the PCI requirements in the following ways:
• Secure Computing Sidewinder® satisfies both PCI requirements for network and application firewalls with one comprehensive solution, enabling organizations to comply with the 6.6 requirement by the June 30, 2008 deadline
• Secure Computing SnapGear® provides cost effective VPN security for retail stores, franchises or any point-of-sale deployment
• Secure Computing SafeWord® provides strong authentication for remote and admin access for in-scope PCI systems
• Secure Computing IronMail® automatically discovers and encrypts or blocks emails containing Primary Account Number (PAN) based on policy
• Secure Computing Webwasher® helps prevent phishing and other malware attacks targeting PANs and user data
“In addition to protecting against the onslaught of security threats, organizations today are required to demonstrate compliance with a growing number of industry regulations and standards,” said Ken Rutsky, vice president of product marketing at Secure Computing.
“Secure Computing recognizes the challenges facing our customers, and is committed to helping them simplify the process by providing all-in-one security and compliance solutions from one trusted vendor.”
Secure Computing has also developed a dedicated PCI Website to provide organizations with information on the 12 major PCI requirements, best practices and solutions for compliance, expert opinions, current news on the topic and a directory of other resources. |
