Solution for PCI DSS
Evaluate and monitor the PCI compliance
PCI almost affecting safety standards relating to the credit card processing all organizations, including businesses, financial institutions, point-of-sale suppliers and pay the hardware/software developers involved in processing.Payment card information is one of the most attract the attacker's goal, thus protect the payment card transaction and the cardholder data (CHD) is very important.
![用于 PCI DSS 的解决方案 Solution for PCI DSS](http://www.yyueer.com/zh-cn/themes/custom/tenable/img/pci-dss/solution-pci.png)
Maintain compliance is still a major challenge facing the enterprises.Nearly half (47.5%) received temporary PCI DSS compliance validation to evaluate the enterprise did not keep all the DSS of control measures.
Payment security report 2018, Verizon.
Credit card information potentialimpact:
- Lost faith, the customer will be lost to other businesses
- Legal fees, settlement, and judgment
- sales
- Penalties and fines
- The cost of the reissue a new card
- Terminate the ability to accept payment CARDS
- Fraud losses
- Unemployment (CISO, CIO, CEO and relevant professional jobs)
- Subsequent higher compliance costs
- closed
Solution of advantage
assessment
Within the scope of the assets
Cover almost all the cardholder data environment within the scope of the assets, including server, database, Web applications and network equipment.
Simplify compliance documents
Use ready-to-use scan and report template, simplify the workload of history of compliance status.
To improve
The production efficiency
To speed up the safety risk assessment, in order to rapidly identify loopholes and misconfiguration and determine priorities.
To reduce
Management cost
Use in the cloud hosting Tenable Vulnerability Management, eliminate internal hosting and Management costs.
Tenable solution based version is Tenable Security Center or Tenable Vulnerability Management (formerly known as Tenable. IO), then we can according to need to add the Tenable PCI ASV and Tenable Web App Scanning.
(PCI DSS) 2.2
Tenable Security Center
Tenable Vulnerability Management,
Tenable ASV PCI
Tenable Web App Scanning
(PCI DSS) 6.1
Tenable Security Center
Tenable Vulnerability Management,
Tenable ASV PCI
Tenable Web App Scanning
(PCI DSS) 6.2
Tenable Security Center
Tenable Vulnerability Management,
Tenable ASV PCI
Tenable Web App Scanning
(PCI DSS) 6.6
Tenable Security Center
Tenable Vulnerability Management,
Tenable ASV PCI
Tenable Web App Scanning
11.2.1 (PCI DSS)
Tenable Security Center
Tenable Vulnerability Management,
Tenable ASV PCI
Tenable Web App Scanning
11.2.2 (PCI DSS)
Tenable Security Center
Tenable Vulnerability Management,
Tenable ASV PCI
Tenable Web App Scanning
Tenable Security Center
For more informationTenable Vulnerability Management,
For more informationTenable ASV PCI
For more informationTenable Web App Scanning
For more informationTenable Security Center platform is local network exposure, can be used to assess the cardholder data environment of loopholes and configuration data.Determine the safety risk priority, and provide clear insight on PCI DSS compliance.
The PCI DSS solution provides comprehensive suppliers and merchants throughout the year to monitor the PCI technology control for continuous visibility, important environmental and operational intelligence services.
- The host activities automation of data collection and review.Near real time to identify the threats facing the cardholder data.
- Maintain compliance between the two assessment.
- Measure the PCI compliance program state, and convey to all the stakeholders.
![](http://www.yyueer.com/zh-cn/themes/custom/tenable/img/solutions/PCI_Vuln_Mgmt_DB.jpg)
Tenable Vulnerability Management ® is based on the cloud platform network exposure, can help protect the cardholder data, whether these data are obtained through e-commerce sites, or stored in the local or the cloud.
Tenable Vulnerability Management and available application can satisfy multiple PCI DSS compliance requirements, in order to help enterprise network security risk measure and Management, far beyond the PCI DSS within the scope of the assets.Tenable Vulnerability Management, with the aid of the visibility of the industry's most comprehensive, in-depth understanding of traditional and modern assets, like a cloud, mobile equipment, containers and Web application, so as to eliminate blind spots.
- Identify vulnerabilities and error in the modern asset allocation, and determine the priority.
- With ITSM solution integration, in order to simplify the repair workflow.
- Verify whether the patch has been repaired.
![](http://www.yyueer.com/zh-cn/themes/custom/tenable/img/solutions/Tio-Vulnerability-Management-Overview.jpg)
Tenable Vulnerability Management ® ASV PCI is Tenable Vulnerability Management ® an add-on, simplifies the external Vulnerability scanning whether meet the requirements of the PCI data security standard 11.2.2 validation process.
Pre-configured scanning template and efficient evidence/dispute resolution process is helpful to fast scanning, submit certification request and resolve the dispute.
- Under the premise of meeting the quarter PCI ASV scan requirement, minimize the impact on the human resources.
- Scanning assets in enterprises is convenient, and according to the need to scan for available for the results of the review.
- Through bulk submit disputes and reuse of previously submitted documents dispute, simplify the dispute resolution process.
![](http://www.yyueer.com/zh-cn/themes/custom/tenable/img/solutions/PCI-AV-Screenshot.jpg)
Tenable Vulnerability Management ® Web App Scanning provided within the scope of the Web application security Vulnerability Scanning function, automation.
Tenable Web App Scanning can safe, accurate and automatic Scanning of your Web application, let you insight into the running environment of all kinds of loopholes and valuable, to determine the priorities of repair.
- Understand the site map application layout, in order to identify the scope of the Web application
- Scan it and the application in a single page, as well as the traditional HTML applications.
- Realize the highly automated non-contact scanning, ongoing protection.Easily develop automated testing frequency.
![](http://www.yyueer.com/zh-cn/themes/custom/tenable/img/solutions/WAS-Screenshot.jpg)
Necessary content
![The white paper.](http://www.yyueer.com/zh-cn/themes/custom/tenable/img/solutions/Tenable-for-Retail-thumb.jpg)
![Product information](http://www.yyueer.com/zh-cn/themes/custom/tenable/img/solutions/resource-3.jpg)
Refer to the Tenable
The actual application case
"We further study of the various solutions.Of course is Tenable."Matt Ramberg Sanmina, vice President of information security department