SenSage Compliance Auditing for Payment Card Industry Data Security Standard (PCI DSS) Requirements
As a credit card acceptor, you are aware of the PCI compliance requirements that were published in January 2005. The standard applies globally to virtually all institutions, merchants, and service providers that store, process, or transmit cardholder data.
 Specifically, the standard provides a set of common industry security requirements broken down into 12 aggregate security requirements that are further detailed in 175 sub-requirements.
Working with both large and small credit card acceptors, and some of the most respected brands in the world, SenSage has developed an out-of-the-box compliance solution that directly map to specific PCI audit requirements including the following examples following the ISO 27002 and ISO 27001 standards:
| SenSage Compliance Report |
PCI 1.1 Security Requirement |
| Privileged Account Access Detailed |
10.2.2, 7.1,
10.3 |
| Privileged Account Access Summary |
10.2.2,
10.2.5 |
| Privileged Command Summary |
10.2.2,
10.2.3, 10.3 |
| Privileged Account Activity Detailed |
8.1, 8.5.1,
8.5.4,8.5.5, 8.5.13, 10.3 |
| User Logins Detailed |
10.2.1,
10.2.5, 10.3 |
Leveraging the SenSage Event Data Warehouse, organizations can quickly implement a solution to collect events and log data from sources of credit card data including from mainframes, open systems and commercial and custom applications including DB2, IMS, Oracle, SQL Server, SAP and a number of other applications. The Event Data Warehouse architecture insures universal data source collection support, virtually unlimited storage capability, and out-of-the-box reporting for all consumers of PCI DSS standards. Learn more about the SenSage SenSage Event Data Warehouse.
Learn more about PCI DSS requirements at https://www.pcisecuritystandards.org/tech/pci_dss.htm
|
