How Your Network Security Provider Maintains PCI Compliance

PCI Compliance affects millions of businesses aroundMaintaining a Vulnerability Management Program
the world - e-commerce businesses, retail merchantsPCI Compliance Requirement 5: Use and regularly
and more. This article will provide you with informationupdate anti-virus software
about PCI compliance and how your network securityPCI Compliance Requirement 6: Develop and maintain
provider should help you maintain it. Whether you're asecure systems and applications
business owner, an executive, or an IT manager, theYour network security provider should provide some
following information will be beneficial to you.of the most comprehensive vulnerability monitoring
Payment Card Industry (PCI) is a worldwideavailable on the market, covering 6 distinct security
information security standard assembled by thedomains:
Payment Card Industry Security Standards CouncilUnapproved Software: Ensure that all software
(PCI SSC). The standard, which is currently comprisedapplications installed on your computer networks are
of 12 guidelines, was created to help organizations thatapproved by your company's security policy.
process card payments prevent credit card fraudSuspicious Traffic: Detect abnormal traffic on your
through increased controls around data and itsnetwork that could indicate an attempt to access or
exposure to compromise.manipulate your computers.
The standard applies to all organizations which hold,Intrusion Vulnerability: Identify open ports or other
process, or pass cardholder information from any cardundesired access points that could put your network
branded with the logo of one of the card brands,at risk of intrusion.
including shopping cart sites, e-commerce and retailMalware Protection: Protect your network by ensuring
merchants and other merchant services providers.antivirus and other network security software are
PCI compliance is critical for millions of businessesinstalled, updated and functioning properly on all
around the world. What about yours? And how doescomputers.
your network security provider help you to maintainUpdates & Patches: Assure all critical security
PCI compliance?updates and patches are installed, with Microsoft's
Your network security provider should be able tominimum protection.
address at least 5 of the critical PCI complianceSecurity Practices: Ensure all your computers are
requirements. They should also support periodic auditsconfigured and used in accordance with best practices
by generating reports and information to validatefor network security.
compliance to corporate policies and identifyAgents: Monitor your network security status and lets
noncompliance issues prior to an audit.you know how to solve any problems it detects.
Building and Maintaining a Secure NetworkVirtual Security Assistant: Provide 24/7 security for
PCI Compliance Requirement 1: Install and maintain ayour entire network at a fraction of the cost of human
firewall configuration to protect cardholder datadomain experts.
PCI Compliance Requirement 2: Do not useRegularly Monitoring and Testing Networks
vendor-supplied defaults for system passwords andPCI Compliance Requirement 11: Regularly test security
other security parameterssystems and processes
Network security providers maintain the integrity of theThis includes monitoring your entire network, including
firewall by scanning for open ports that create outsidelaptops, 24 hours a day, 7 days a week. As a SaaS
access to the network. As part of an applied securityenabled product, network security constantly provides
policy, blank passwords must be identified andupdated security best practices and policies to your
checked against 25 other security best practices.network.