There are twelve security requirements mandated by PCI, of which several relate directly to security and log management - including the troublesome PCI sections 10, 11.4, 12.9 and 12.10. NitroSecurity provides both log management, analysis, data monitoring and intrusion prevention solutions that cover nearly every aspect of all twelve PCI requirements—more in-depth PCI compliance coverage than any other solution.
Requirement 1 Install and maintain a firewall configuration to protect cardholder data
Requirement 2 Do not use vendor-supplied defaults for system passwords and other security parameters
These requirements can be addressed with NitroGuard IPS's integrated firewall, or by monitoring system transactions for default values using NitroView DBM
Requirement 3 Protect stored cardholder data
Requirement 4 Encrypt transmission of cardholder data across open, public networks
NitroView DBM can detect the presence of cardholder data within your database, letting you know where sensitive data resides, and alerting you when it is accessed. Correlating this information against network flows and other events using NitroView ESM lets you know if that data was sent over an untrusted network.
Requirement 5 Use and regularly update anti-virus software
Requirement 6 Develop and maintain secure systems and applications
NitroView DBM monitors systems to ensure security, and also assesses servers and workstations to ensure that anti-virus software has been installed and processes are running. Detects & alerts when a process is stopped, and even restart it automatically. NitroView ESM integrates these activity alerts with attack events, flows, and information from leading Vulnerability Assessment (VA) and Antivirus (AV) solutions, providing easy analysis and reporting on system patches, security levels, and anti-virus software updates, and the relevant risk of threat activity
Requirement 7 Restrict access to cardholder data by business need-to-know
Requirement 8 Assign a unique ID to each person with computer access
Requirement 9 Restrict physical access to cardholder data
NitroView DBM monitors and identifies events related to user account provisioning, privilege escalation, and other account- or user- anomalies. NitroView ESM correlates these events with other security events, network flow and log activity that are associated with the user/accounts in question, and provides comprehensive reporting on user and account activity. While physical access restrictions are typically beyond the scope of a security management system, NitroSecurity can support these efforts through the collection and reporting of events from physical security systems.
Requirement 10 Track and monitor all access to network resources and cardholder data
Requirement 11 Regularly test security systems and processes
NitroView DBM monitors all data access, and also provides continuous monitoring of critical system files and database tables to ensure their integrity. NitroView ESM is again able to correlate and analyze this data with other security data from logs, flows, and other security events for comprehensive analysis and reporting.
Requirement 12 Maintain a policy that addresses information security
NitroSecurity's solution satisfies PCI item 12 by: providing the necessary IPS and database activity alerts with NitroGuard IPS and NitroView DBM; providing compliant storage for that data with NitroView ELM; providing the means to produce comprehensive reports with both NitroView ESM and NitroView ELM
|
Log in
