Freely subscribe to our NEWSLETTER

The ArcSight PCI Protection solution comprehensively monitors compliance with the Payment Card Industry (PCI) Data Security Standard (DSS) and is built on the award-winning ArcSight platform, which provides a foundation for compliance efforts across industry standards and government regulations. The ArcSight PCI Protection Suite is a comprehensive, scalable and cost-effective solution for protecting cardholder data and monitoring ongoing PCI compliance. Level one and two merchants across the retail, transportation, telecommunications, medical and financial markets have already selected the ArcSight PCI Protection Suite to secure their customers against the growing global threats to cardholder identity and data privacy.

The ArcSight PCI Protection Suite proactively protects cardholder data against breaches, insider threats and non-compliance risks across all 12 PCI requirements through:
• Real-time monitoring and early-warning breach detection across all users, applications, databases and other PCI-impacted IT infrastructure
• Automatic and continuous capture, storage and analysis of all events across distributed locations
• Efficient compliance-posture validation and visibility

Announced customers include AirTran Airways, a subsidiary of AirTran Holdings, Inc., one of America’s largest low-fare airlines; BFS Retail and Commercial Operations, LLC, the world’s largest chain of company-owned car care centers; OfficeMax, a leading provider of office equipment and services; and Princess Cruises, one of the most recognised cruise lines in the world.

The ArcSight PCI Protection Suite helps merchants cost-effectively address these challenges, providing the following clear benefits:
• Comprehensive automated monitoring across PCI-affected assets to reduce workload and to eliminate human error associated with manual monitoring
• Centralised monitoring and distributed data collection at remote sites, with support for hundreds of devices and applications, including legacy systems, to provide organisations with overall visibility into their distributed cardholder infrastructure and networks
• Continuous oversight of PCI controls and automated test procedures to meet fiduciary responsibility efficiently
• Support for current and evolving compliance and governance initiatives for continued lifecycle value

Details of the ArcSight PCI Protection Suite

ArcSight’s PCI Protection Suite builds upon the award-winning ArcSight product family and is designed to provide automated, real-time event capture, cost-effective long-term storage and sophisticated analytics across a merchant’s card data-flow infrastructure.

The ArcSight PCI Protection Suite is designed for ease of deployment, flexibility and cost-effective lifecycle support of remote sites. ArcSight’s unique support for highly distributed environments provides a secure foundation that is centrally managed but easily deployed across a massively dispersed network with large numbers of diverse IT elements and business applications. Merchants can install low-cost, plug-and-play collector appliances at branches or retail locations, or can implement remote collection capabilities in software. Administrators can centrally control, manage and maintain configurations across 100s or 1,000s of remote sites. To support remote retail locations that are constrained by low-speed WAN connections, the ArcSight solution provides built-in bandwidth controls so that POS transactional data is not adversely affected by log collection traffic. The solution automatically reprioritises high severity events for early detection of breaches. Local caching at remote sites provides added protection in the event of extended connectivity loss between remote sites and data centres. The system encrypts logs before forwarding them to a centralised log repository.

ArcSight’s PCI Protection Suite automates the collection and monitoring of events from more than 185 different devices and applications, including firewalls, IDSs, switches/routers, network appliances, web servers, databases, applications, application servers, mail servers, authentication servers, kiosks, POS systems and card scanners. The ArcSight solution can collect data for PCI events at rates ranging from 100s of events per second to 100s of 1,000s of events per second and can correlate events from 100s of 1,000s of sources.

Once enterprise wide event data is collected, pre-packaged analytics in the form of PCI-specific rules, dashboards and reports give merchants the ‘big picture’ view of the state of protection across PCI-impacted assets and the 12 PCI requirements. As a result, merchants, service providers and processors that store, process or transmit cardholder data are better equipped to run efficient and effective PCI compliance programs to truly protect their cardholder data.

ArcSight’s PCI insider threat early-warning system watches users that interact with PCI-impacted assets to get an overall view of activity and to detect suspicious behavior before an actual breach occurs. Should a violation or potential threat arise, ArcSight’s response management system provides notification, quarantine and remediation options, enabling intelligent identification, prioritisation and response.

The ArcSight PCI Protection Suite also delivers strong configuration management capabilities for security and network devices including routers, switches, VPN devices, firewalls and wireless access points.

– Pricing and Availability

The ArcSight PCI Protection Suite is currently available in a variety of configuration and pricing packages designed to best fit customer needs and deployment environments; packages start at $20,000 (US list). Beyond the comprehensive suite that monitors and protects against breaches and non-compliance across all 12 PCI requirements, options exist for requirement 10 only, and for requirements one and two only.