Bertucci's Ensures Continuous PCI and Privacy Regulation Compliance with Tripwire Configuration Security and Compliance Automation Software

Portland, OR - Apr 12, 2010 - Tripwire Inc., the leading global provider of IT security and compliance automation solutions,announced today that Bertucci’s Corporation has purchased Tripwire Enterprise® in order to meet and maintain the international information security standards set by the Payment Card Industry Data Security Standard (PCI DSS) and by the Massachusetts Privacy Regulation 201 CMR 17.

Currently operating more than 90 restaurants in ten states and the District of Columbia, Bertucci’s Corporation processes in excess of 3,795,847 card transactions a month and is required to conform to the regulatory standards intended to protect customer data. As many Bertucci’s restaurants are located in New England, they must also comply with MA 201 CMR 17, a regulation that mandates strong controls to protect personally identifiable information and breach notifications for Massachusetts residents. Therefore, the company needed to ensure that its IT systems were capable of handling sensitive credit card data.

Tripwire Enterprise addresses both the PCI specification and Mass privacy regulation with enhanced file integrity monitoring in real time by identifying undesirable, unauthorized change that puts the infrastructure, and therefore cardholder data and other personally identifiable information, at risk. The change is highlighted as unauthorized or non-compliant in an online, configurable dashboard for quick, easy investigation and remediation.

"Bertucci’s Corporation needed a solution that would address multiple compliance requirements. Tripwire Enterprise’s proactive configuration assessment monitors changes to our systems affected by PCI and, by detecting and reporting any unauthorized changes, ensures that any issues are immediately brought to our attention," said Kevin Quinlan, senior IT director of Bertucci’s."With Tripwire Enterprise, we have been able to easily and cost effectively achieve and maintain PCI compliance. Additionally, Tripwire was ahead of other vendors in addressing Mass 201 and even had specific policies that we could use right out of the box."

Tripwire Enterprise is the only solution that provides a single source for detecting, analyzing and reporting all change across the entire IT infrastructure. Users specify how frequently to monitor for change, and can even check for change on an event-driven basis. The Tripwire Enterprise solution also comes with policy templates that assess relevant configurations across physical and virtual infrastructure, alerting administrators to settings that are out of line with compliance requirements. Once configurations have been adjusted, Tripwire's file integrity monitoring ensures they stay in compliance with automatic alerts about any suspect change activity.

About Bertucci’s Corporation
Like the original pizzerias and trattorias of Italy, Bertucci's started as a place for friends, family and neighbors to gather. That was in 1981 in Somerville, Massachusetts. And now friends, family and neighbors gather in more than 90 restaurants in ten states and the District of Columbia. Honesty and passion are still at the heart of every Bertucci's meal. A passion for flavors, a passion for creativity and a passion for tradition.