SBN

Simplify PCI Compliance with File Integrity Monitoring (FIM)

Most businesses around the world deal with credit cards on some level, which means that most businesses must comply with the Payment Card Industry Data Security Standard (PCI DSS). If you process, transmit, or store credit card transactions or data, you must meet the PCI-DSS requirements. Failure to do so can be quite costly.

Two of the requirements that are particularly challenging to maintain and monitor are requirements 10.5.5 and 11.5. PCI 10.5.5 requires that you have the ability to detect attempted changes to log files, and 11.5 states that you must have the ability to detect unauthorized changes to operating system or application files.

Traditionally, organizations solve for these issues with expensive point solutions. The tools to monitor for such changes can be costly, especially when you factor in the cost of training and management for the tools.

Businesses need a more cost-effective way to achieve and maintain compliance. They also need to reduce the complexity of the IT environment. To help organizations solve these problems and meet compliance requirements, Alert Logic has incorporated File Integrity Monitoring (FIM) capabilities into its MDR platform. This addition enhances detection of unauthorized change events, including attempted attacks and the actions of malicious insiders. It also monitors for integrity of system directories, registry keys, and values on the operating system, and includes file access, creation, movement, attribute modification, and several other types of file interactions.

Antonio Sanchez, Lead Technical Marketing Manager for Alert Logic, talks about Alert Logic File Integrity Monitoring (FIM) and how it can help you with PCI-DSS compliance here:

Check out this demo video or click here for more information about Alert Logic File Integrity Monitoring (FIM). If you’d like to learn more about this and other exciting new capabilities, check out this blog post or join us for a LinkedIn livestream on September 16 at 12pm CST.

 

About the Author

Tony Bradley

Tony Bradley is Senior Manager of Content Marketing for Alert Logic. Tony worked in the trenches as a network administrator and security consultant before shifting to the marketing and writing side of things. He is an 11-time Microsoft MVP in security and cloud and has been a CISSP-ISSAP since 2002. Tony has authored or co-authored a dozen books on IT and IT security topics, and is a prolific contributor to online media sites such as Forbes and DevOps.com. He has established a reputation for effective content marketing, and building and engaging a community and social media audience.

Connect |
Email Me |
More Posts by Tony Bradley


*** This is a Security Bloggers Network syndicated blog from Alert Logic - Blogs Feed authored by Tony Bradley. Read the original post at: https://blog.alertlogic.com/simplify-pci-compliance-with-file-integrity-monitoring-fim/