Web Security Retail - PCI Compliance |
- What is your strategy to prevent critical downtime caused by malware-triggered system crashes?
- What measures have you taken to secure webmail, instant messaging, social networks, blogs and other backdoors for confidential information? Backdoors can harm your reputation.
|
 |
Access to internet resources can help retailers manage inventory, reach out to customers, and take customer orders. But the indubitable benefit of internet access is accompanied with new Internet security and compliance threats. Retailers can manage access to increase productivity, while minimizing corporate security risks and exposure to legal liability. |
| The Payment Card Industry Data Security Standard (PCI-DSS) was established in the US to ensure the security of credit card information in processes of purchase and transaction. Retailers taking transactions online have to ensure that their traffic is encrypted. Further, any retailers with confidential information within their network—such as inventory, customer history, credit card information and more—risk unauthorized data leaks. Herein lies the biggest threat to PCI compiance. These leaks can be costly in terms of fines, potential litigation and a damaged reputation and need data loss prevention. |
What’s at Risk? Financial Records and Customer Information |
| Spyware and malware, which install themselves without explicit permission, create open backdoors. They enable hackers to access an organization’s private information, such as financial and customer records. The largest problem: nearly half of malicious code is embedded on websites that employees access regularly, such as travel sites. Furthermore, Webmail, Instant Messaging, Social Networks, Blogs and File Sharing networks are commonly used to leak information and are commonly overlooked by traditional security vendors. Yet, it is not practical to block access completely. For example, many retailers use social networks as a marketing platform. Retailers should be able to set granular controls on the use of these applications, enabling productive use while minimizing risks. |
A Downtime Nightmare |
| Malware also creates critical downtime and data loss. Valuable financial records and customer transactions can be destroyed by malware. Viruses lead to system crashes, creating downtime that is a nightmare for retailers. |
Audit Trails for Security and PCI Compliance |
| Moreover, PCI requires institutions to collect and retain audit trails for at least a year. Thus, retailers must retain information about the internet use of employees in a comprehensive and accessible form in order to be in PCI compliance. In addition to providing compliance, transaction logs are an important tool in business risk management. By providing visibility into inbound and outbound internet traffic, transaction logs detect and record anomalous incidents. Reporting allows institutions to prevent or proactively respond to future incidents. Without this visibility into internet activity, institutions are often have a false sense of security; they are risking private information and they have no idea. |
| Zscaler can help retailers protect their information and provide compliance so that they can boost sales and productivity, and maintain a respectable brand and reputation. |
| To learn more about how Zscaler can help retailers, please click here. |
| |
| |
|
|
|
- Contact Sales
-
- Resources
-
More
|
|
|
The Cloud Security Company™
