Professional Documents
Culture Documents
Reaching PCI Nirvana Webinar Slides FINAL
Reaching PCI Nirvana Webinar Slides FINAL
• 2014, 2015: run of attacks against SSL 2.0, 3.0. and TLS 1.0
• “Heartbleed”, “FREAK”, “POODLE”, “Logjam” …
Don’t Wait!
WHAT ELSE IS IN PCI 3.2?
6%
12%
26%
<1 week
1-2 weeks
2-4 weeks
1-2 months
2+ months
27%
29%
COMPLIANCE MUST BE CONTINUOUS
Report Assess
Remediate
PCI-DSS COMPLIANCE WITH
ALGOSEC
Manage Security at the Speed of Business
14 | Confidential
KEY CAPABILITIES
Secure Business Application Connectivity
Abstraction Layer
Firewalls Security Groups Routers Web Proxies Vulnerability Scanners Load Balancers
16 | Confidential
DEMONSTRATION OF PCI
COMPLIANCE WITH THE
ALGOSEC SUITE
CONTINUOUS COMPLIANCE
CONTINUOUS COMPLIANCE
• Exportable
CONTINUOUS COMPLIANCE
• Automatically created
• Scheduled or on demand
• Covers all AlgoSec-managed
devices
ITEM-BY-ITEM DEVICE COLLATION
PASSWORD DEFAULTS
OUTDATED SOFTWARE VERSIONS
BASELINE COMPLIANCE
BASELINE COMPLIANCE
• Use AlgoSec Baselines
• Or Customize your own
CHANGE PROCESS