1-866-PLYNT-24
|
Plynt PCI Compliance Suite
If you are preparing for PCI compliance, Plynt can help you all the way. You can either select the entire Plynt PCI Compliance suite, or just use specific modules you need immediately. The Plynt PCI compliance program is the quickest and most cost-effective way to meet PCI requirements.
PCI Goals |
PCI DSS Requirements |
Plynt PCI Module |
Build and Maintain a Secure Network |
1. Install and maintain a firewall configuration to protect cardholder data |
|
2. Do not use vendor-supplied defaults for system passwords and other security parameters |
||
Protect Cardholder Data |
3. Protect stored cardholder data |
|
4. Encrypt transmission of cardholder data across open, public networks |
||
Maintain a Vulnerability Management Program |
5. Use and regularly update anti-virus software or programs |
|
6. Develop and maintain secure systems and applications |
PCI Code Review |
|
Implement Strong Access Control Measures |
7. Restrict access to cardholder data by business need-to-know |
|
8. Assign a unique ID to each person with computer access |
||
9. Restrict physical access to cardholder data |
||
Regularly Monitor and Test Networks |
10. Track and monitor all access to network resources and cardholder data |
Remote Monitoring & Log Management |
11. Regularly test security systems and processes |
PCI Network Penetration Test |
|
Maintain an Information Security Policy |
12. Maintain a policy that addresses information security for employees and contractors |
Plynt is a leader in security code reviews. PCI Section 6.3.7 requires “Review of custom code prior to release to production or customers in order to identify any potential coding vulnerability”. With Plynt’s experience in code reviewing applications as diverse as online banking to embedded systems, and online trading to document management systems, you are assured of fast and accurate code reviews. Read more on how we do PCI Code Reviews.
Plynt has one of the largest application penetration testing practices in the world, with experience in testing 1000+ applications. Plynt penetration tests help you comply with the requirement of PCI Section 11.3.2 “Verify that the penetration test includes application-layer penetration tests at least once a year”. Read more on how we do Application Penetration Tests on our blog.
Plynt’s Application Security Training is designed to meet PCI requirement 6.5.a “Verify that processes require training in secure coding techniques for developers, and are based on guidance such as the OWASP guide”. Our online trainings help you train all your developers cost-effectively.
Plynt tests 200+ networks each year. Our network penetration test helps you meet PCI requirement 11.3 “Perform external and internal penetration testing at least once a year and after any significant infrastructure or application upgrade or modification.” Read more on our standard network penetration test on our blog.
Our PCI Wireless Devices Audit is a cost-effective way to comply with PCI requirement 11.1 “Test for the presence of wireless access points by using a wireless analyzer at least quarterly or deploying a wireless IDS/IPS to identify all wireless devices in use.”
We use the industry’s leading scanners to help you comply with Section 11.2 of the PCI Standard “Run internal and external network vulnerability scans at least quarterly and after any significant change in the network”
Requirement 1 of PCI mandates “Install and maintain a firewall configuration to protect cardholder data”. Let Plynt manage your firewalls from our 24 x 7 Security Operations Centers (SOC). A centralized SOC standardizes security procedures, and reduces cost through economies of scale.
Section 5.2 of PCI requires that “all anti-virus mechanisms are current, actively running, and capable of generating audit logs.” Let Plynt manage your anti virus software from our 24 x 7 Security Operations Centers (SOC).
Section 10 of PCI requires that all audit trails be monitored for suspicious activity. Plynt’s remote log and audit trail monitoring service provides a cost-effective way to monitor your logs and comply with PCI. We already monitor logs from thousands of systems at the SOC.
Plynt can ensure that your servers and devices are configured securely. Our Security Hardening module helps you comply with PCI Section 2 that mandates “Do not use vendor-supplied defaults for system passwords and other security parameters”
PCI section 12 requires “Maintain a policy that addresses information security for employees and contractors”. Plynt’s Security Policy module is designed to ensure your security policies meet the requirements of PCI.
Plynt can assist you secure card holder data and comply with the PCI standard. Leverage Plynt’s expertise in international standards like ISO 27001 and COBIT to ensure that your protection mechanisms are in line with industry best practices.
Call Toll Free: 1-(866)PLYNT24 [1-866-759-6824] for a no obligation quote. Or, e-mail us at