Building a secure application is just a code review away
Welcome to WordPress. This is your first post. Edit or delete it, then start writing!
PCI-DSS & ISO27001 Compliance
Infoprive’s solution ensures leading bank’s proactive cybersecurity posture to customers’ sensitive data
Background
Our Client, a Nigerian financial services provider, licensed as a commercial bank is an innovative financial institution that offers customized business solutions and advanced products.
Business Challenge
Effective firewall policy management and simplified compliance management. Firewall devices, routers, and switches protect the financial data of Bank’s customers, as well as the operations of their branches.
As a bank, all security policies and firewall configurations must comply with PCI-DSS and ISO27001 standards. Ensuring compliance, however, is quite challenging for the IT security team.
With equipment from many different vendors, even simple policy audits were challenging tasks. As a result of the diversity of products and lack of visibility, it was difficult to monitor changes to rule configurations in real-time in order to maintain internal security compliance as well as PCI compliance. Cleaning up and fine-tuning firewall policies is a particularly complex process, which made it difficult to respond quickly to the changing needs of business applications in the bank. The bank sought a solution that would simplify the process of conducting a risk analysis, evaluating PCI compliance, and identifying the necessary steps for remediation for her network equipment infrastructure.
As a bank, all security policies and firewall configurations must comply with PCI-DSS and ISO27001 standards. Ensuring compliance, however, is quite challenging for the IT security team.
With equipment from many different vendors, even simple policy audits were challenging tasks. As a result of the diversity of products and lack of visibility, it was difficult to monitor changes to rule configurations in real-time in order to maintain internal security compliance as well as PCI compliance. Cleaning up and fine-tuning firewall policies is a particularly complex process, which made it difficult to respond quickly to the changing needs of business applications in the bank. The bank sought a solution that would simplify the process of conducting a risk analysis, evaluating PCI compliance, and identifying the necessary steps for remediation for her network equipment infrastructure.
Solution
Deploy Algosec Firewall Analyser is deployed to simplify policy and compliance management across the bank’s network. Our client decided to choose AlgoSec’s Security Management solution following an intensive vendor selection process. Impressed with features like AlgoSec’s superior security policy analysis and ability to make actionable recommendations with a high level of accuracy.
This solution will enable the bank to identify ways to consolidate and optimize rules, perform a deep risk analysis, automate workflows and ensure compliance.
AlgoSec helps to identify overly permissive firewall rules based on actual use, as well as duplicate, unused, and expired rules and objects. This information gives the bank data they need to close off potential access points and help prevent attacks.
AlgoSec also provides clear, detailed recommendations on how to best reorder rules for optimal firewall performance. In addition, AlgoSec validates firewall policy and rules against regulations such as PCI, as well as industry best practices and customized corporate policies to uncover and prioritize risks and track trends over time.
Since implementation, AlgoSec has enabled the bank’s IT team to maximize time and resources when complying with internal policies, PCI, and other standards, and when monitoring changes in rules
AlgoSec helps to identify overly permissive firewall rules based on actual use, as well as duplicate, unused, and expired rules and objects. This information gives the bank data they need to close off potential access points and help prevent attacks.
AlgoSec also provides clear, detailed recommendations on how to best reorder rules for optimal firewall performance. In addition, AlgoSec validates firewall policy and rules against regulations such as PCI, as well as industry best practices and customized corporate policies to uncover and prioritize risks and track trends over time.
Since implementation, AlgoSec has enabled the bank’s IT team to maximize time and resources when complying with internal policies, PCI, and other standards, and when monitoring changes in rules
Section
Case Study
Need A Service ?
Talk to an Expert
- +234 (1) 2900808
- info@infoprive.com
Infoprive’s DNA is anchored on its zest and focus to provide the best solutions to its clients.
- 7A, Idejo Street, Victoria Island, Lagos.
- +234 (1) 290 0808
Infoprive
Resources
- Press Kit
- Press Releases
- Case Study
- Training