Pci Dss

Solution Search:
Architecting PCI DSS compliance with encryption, tokenization, and key management by Thales
Securing cardholder data is not just about passing annual PCI DSS audits. Depending on your key management architecture, you could be spending too much...
Six Ways to Reduce PCI DSS Audit Scope by Tokenizing Cardholder Data by nuBridges, Inc.
This paper explores the use of tokenization as a best practice in improving the security of credit card transactions, while at the same time minimizing the cost and complexity of PCI DSS compliance by reducing audit scope.

Enterprises are seeking ways to simplify and reduce...
Avoiding PCI Non Compliance by Guidance Software, Inc.
tackle the ever-increasing PCI compliance budget challenges they face.

For many organisations’ Chief Information Officers and Chief Security Officers, the Payment Card Industry Data Security Standard (PCI DSS) was going to spell the end of the road for criminals who were ‘cashing in’ on the...
Time's Up on PCI Compliance by SonicWALL
PCI DSS compliance. Review strategies that will keep you ahead of deadlines and help you avoid costly penalties for non-compliance.

With new looming deadlines for the Payment Card Industry's Data Security Standard DSS (PCI DSS) right around the corner, the time is now to get ready. These new requirements will...
How to Accelerate PCI Compliance by SonicWALL
control elements designed to secure the transmission, storage, and processing of cardholder data. Read this solution brief to find out how a unified threat management solution can help your organization achieve PCI DSS compliance faster. The Payment Card Industry (PCI) Data Security Standard (DSS) applies to...
Beyond Payment Card Industry (PCI) Checklists: Securing Cardholder Data with Enhanced File Integrity Monitoring by Tripwire, Inc.
This whitepaper examines two areas of technical controls required by the PCI DSS relevant to configuration and change, which help security practitioners prevent...
Challenges and Opportunities of the Payment Card Industry: A White Paper by the IT Compliance Institute by Tripwire, Inc.
Enterprise businesses require the control framework involved in the PCI DSS to help improve internal operational, security and audit performance. This white...
Enhanced File Integrity Monitoring: Tripwire’s Automated, Continuous PCI 1.2 Compliance for Secure Cardholder Data by Tripwire, Inc.
Unfortunately, many organizations focus their energy on simply passing their PCI audit and lose sight of the main objective of the PCI DSS -- securing cardholder data. They still suffer a security breach even though they pass the...
Top 5 PCI DSS Ambiguities and How to Overcome Them by SonicWALL
In this IT briefing, security expert Ed Moyle answers PCI DSS questions that pose the greatest challenge to enterprises, outlines recent and...
PCI DSS Ambiguities and How to Overcome Them by SonicWALL
In this presentation, security expert Ed Moyle answers PCI DSS questions that pose the greatest challenge to enterprises, outlines recent and...
bwin Success Story with Novell Sentinel® by Novell Inc.
In this case study, learn how bwin used Novell Sentinel solution to improve security, reduce administrative effort and make it easier to demonstrate PCI DSS compliance.

The bwin Group is one of the world's leading providers of online gaming...
For PCI, the Future is Now by Tripwire, Inc.
As the PCI DSS and its sister standards continue to evolve and gain momentum, organizations will have...
Regulatory Compliance Alignment: Antivirus support of compliance with HIPAA, SOX, GLB, PCI DSS and FISMA by ESET
This report provides the information necessary to determine where antivirus solutions may help an organization to comply with the following regulatory requirements: HIPAA, SOX, GLBA, PCI DSS & FISMA.

The antivirus industry currently serves numerous vertical sectors and has...
Using Microsoft Active Directory to Address Payment Card Industry (PCI) Data Security Standard Requirements in Heterogeneous Environments by Centrify Corporation
in Microsoft’s Active Directory, using Centrify’s DirectControl and DirectAudit. Combined, Active Directory, DirectControl and DirectAudit provide a comprehensive solution to address specific PCI DSS requirements.

The Security Standards Council of the Payment Card Industry (PCI) owns and...
Achieving PCI DSS Compliance Through Security, Reliability and Consistent Policy Control by SonicWALL
Ensuring Payment Card Industry (PCI) compliance requires expert understanding of data storage and encryption...
PCI Compliant Yesterday. Still Compliant Today? by Tripwire, Inc.
This webcast talks about the need for automated compliance. The webcast answers questions like: Why is PCI compliance necessary? Should PCI regulations be viewed as a final checklist, or a...
Keeping Up with PCI: Implementing Network Segmentation and Monitoring Security Controls by SonicWALL
main requirements for testing security controls, and find out how to implement PCI network segmentation and how it may ease PCI compliance for your organization.

Payment Card Industry Data Security Standards (PCI DSS) requirements specify that the security controls you implement must be monitored and...
Webcast: Tokenization Success Story by nuBridges, Inc.
ll discuss the business drivers behind tokenization, exactly what ‘tokenization’ is, some best practices for a successful implementation, and lastly, a customer example of tokenization used to reduce the PCI DSS audit scope.

Tune in to this Tokenization webcast where we’ll discuss the business...
Standardize Systems for Audit Readiness and Improved Stability by Tripwire, Inc.
Sitel meet all their needs and more. Sitel, Inc is a global provider of business process outsourcing (BPO). They needed to attain a state of standardized audit readiness and compliance across multiple data centers, meet PCI DSS requirements as well as other regulatory standards, and develop multi-tier change and...
Next Generation Log and Event Management by Tripwire, Inc.
events that those early SIEM solutions weren’t aware of. The auditors said that everything needed to be captured and stored. 

Compliance regulations such as Payment Card Industry Data Security Standard (PCI DSS), NERC, Sarbanes-Oxley (SOX), and the Federal Information Security Management Act (FISMA...
Ensure Online Services are Secure and PCI Compliant: IT Processes that Keep Pace with Rapid Growth by Tripwire, Inc.
bwin Interactive Entertainment is an online gaming company that needed to quickly become PCI compliant, implement IT policies that would facilitate the company’s rapid growth, and...
Secure, Simple and Powerful Log Management with Novell® Sentinel™ Log Manager by Novell Inc.
typically provide minimal support for diverse log formats and rely on non-secure communication protocols.

 

Read this whitepaper to find out how Novell's Sentinel™ Log Manager simplifies compliance with PCI-DSS, Sarbanes-Oxley and other regulations by collecting, storing, analyzing and managing...
Novell® Sentinel™ Log Manager: Secure, Simple and Powerful Log Management by Novell Inc.
allows organizations to simplify their compliance efforts, reduce deployment and management costs, and build a scalable compliance and security foundation that grows with their needs.

Whether it's to comply with PCI-DSS, SOX, HIPAA and other regulations, or to more effectively manage security requirements...
How Can Security Management Technologies Help Me with PCI Compliance? by CA
Read this paper to learn how CA Security Management provides comprehensive and proven solutions to help achieve PCI compliance by ensuring the privacy of all confidential cardholder information, and...
Market Research Brief: PCI Compliance by Tripwire, Inc.
Read this research briefing to gain insight into specific aspects of PCI compliance, particularly how to ensure and validate your ability to protect...
Related Articles
PCI DSS Council adding new standard for payment applications by Bill Brenner, Senior News Writer
the Payment Card Industry Security Standards Council is adding a new provision to the PCI Data Security Standard (PCI DSS).

The council, which manages PCI DSS and the PCI PIN Entry Device (PED) security requirements, said Wednesday that the Payment Application Data Security... More...

Don't blame PCI DSS for TJX troubles, IT pros say by Bill Brenner, Senior News Writer
at TJX Cos. Inc. and elsewhere have some questioning whether the Payment Card Industry Data Security Standard (PCI DSS) is tough enough to quell the epidemic. But most IT security professionals say the problem isn't PCI DSS, but the lax manner in which companies try to implement... More...
How Chevron met the PCI DSS deadline by Bill Brenner, Senior News Writer
trouble understanding everything that would be required under the Payment Card Industry's Data Security Standard (PCI DSS). As global information protection architect for Chevron, he has long dealt with the demands of regulatory compliance.

Bound by "every regulatory law ever... More...

PCI DSS requirements still baffling as compliance deadline approaches by Ron Condon, U.K. Bureau Chief
that one of three U.K. companies still does not fully understand Payment Card Industry's Data Security Standard (PCI DSS) requirements, and only 11% say they are compliant with the standard.

The figures come from a study carried out by Redshift Research Ltd. on behalf of security... More...

Visa hopes encouragement improves lagging PCI DSS adoption by Robert Westervelt, News Editor
NEW YORK -- Visa executives are trying to encourage merchants to comply with the PCI Data Security Standards (PCI DSS), and raise lagging adoption rates in the program.

Speaking to about 50 attendees at a day-long Advanced PCI DSS Conference in New York, Jennifer Fischer... More...

Related Advice
Should PCI DSS auditors be subjective? by Mike Rothman
nature of different technology environments, it's not possible to define regulations tightly enough to remove subjectivity.

If we are talking about PCI DSS specifically, let's take its first requirement -- "Install and maintain a firewall configuration to protect data." How is that anything but subjective... More...

How to protect credit card data over the phone – and pass PCI DSS by Mathieu Gorge
As my organization moves towards PCI DSS compliance, I have been asked by our call centre to look at installing a recording function on the phone system. The problem is that card transactions... More...
Will the PCI DSS require encryption over dedicated lines? by Mike Chapple
over dedicated lines. The passing of unencrypted data over a closed network carries only a small risk, and there are simply much greater threats that the PCI DSS must protect against. We're far more likely to see changes similar to the stricter revisions of the PCI Data Security Standard version 1.1. For example... More...