White Paper
Beyond PCI Checklists: Securing Cardholder Data with Tripwire’s Enhanced File Integrity Monitoring
Many organizations pass a PCI DSS audit, but still find themselves in the news after suffering a security breach. Part of the issue may be that the configuration settings were compliant with the settings specified in the PCI DSS, but only for a point in time. But what happens as soon as the audit is over and changes to computer system configurations take those systems out of compliance? The true intent of the PCI DSS is not for organizations to be compliant at a single point in time, but instead to maintain a compliant state over time, in the face of inevitable change that occurs to in-scope systems.
This white paper discusses:
- The high-level goals of the PCI DSS.
- The two areas of technical controls the PCI DSS requires-configuration and change process controls.
- How Configuration Assessment helps you address the configuration checklist items in the PCI DSS.
- How Enhanced File Integrity Monitoring helps you maintain PCI DSS compliance over time in the face of configuration change.
Download this paper and learn how Tripwire's Enhanced File Integrity Monitoring helps you move beyond the PCI checklists to truly secure the cardholder environment.
Related Tripwire Resources You Might Be Interested In:
- From Compliance To Security: Making PCI Earn Its Keep Watch
- How a Growing Grocery Chain Turned Compliance Checkboxes into IT Security Watch
- The True Cost of Compliance - Ponemon Institute Research Study Watch
- Gearing Up for PCI DSS version 2.0 Watch
- True File Integrity Monitoring Read
- Tripwire VIA for Stores: Affordable Continuous Compliance and Security for Retailers Watch
- How to Comply with PCI DSS Watch
- On Common Ground: Where Compliance and Data Protection Overlap Read
Sign In
to register for this White Paper