Compliance Issues with File Integrity Monitoring? How One Financial Institution Solved Theirs with CSP
File Integrity Monitoring is an important requirement of the PCI data security standard for maintaining confidential (e.g., cardholder) information, and is considered a crucial part of protecting business assets.
NonStop systems are now being used in far more dynamic situations and have more external connections than ever before. The ubiquity of payment cards for personal electronic transactions has changed the security equation in a fundamental way.
Any compromise in security is likely to have far reaching consequences, both in terms of financial loss, and for the wider damage to an organization’s reputation. Protecting personal cardholder information is paramount.
In this context, File Integrity Monitoring should be considered an important security necessity, not just for PCI compliance, but in order to preserve the integrity of all NonStop systems.
Toronto Based Firm Receives Compliance Requirement
CSP recently received a request by a large, Toronto based, financial institution regarding File Integrity Monitoring. The client wished to improve their file monitoring process and had also received new compliance requirements regarding their file monitoring abilities. Specifically, they were having issues enabling file monitoring for a payment application.
It was crucial for them to know which changes had been made to critical files and to also have the ability to flag any unauthorized changes, compare file sets on different systems, report on changes to file attributes, and generate regular reports for managers and auditors. File monitoring was also required on an ongoing basis.
After evaluating their requirements, CSP recommended Verify EliteTM, a solution specifically designed for monitoring changes to files and generating compliance reports.
Verify Elite: The Complete Solution for File Integrity Monitoring & Compliance
Verify Elite is a complete NonStop security compliance and file integrity monitoring solution which continuously ensures that your NonStop System’s security meets industry standards and regulations, including PCI DSS, SOX, HIPAA and GDPR.
By performing regularly scheduled compliance checks, Verify Elite’s Security Compliance Monitor can ensure your compliance with both regulations and internal security policies.
And by executing regularly scheduled file integrity checks, Verify Elite’s File Integrity Monitor ensures that no unauthorized changes occur to selected groups of files.
Security Compliance Monitor – Key Features
- Pre-built customizable compliance rules
- Detailed reporting on regulatory compliance
- Includes rules for PCI DSS, SOX, HIPAA
- Customizable reports
- Intuitive GUI makes compliance checking & audit reporting easy
File Integrity Monitor – Key Features
- Monitors both Guardian & OSS files
- Meets PCI-DSS regulation 11.5
- Captures file fingerprints
- Full audit reporting capability
- Alerts for unauthorized changes
- Multi-Node Fileset Compare
- Easily integrated with enterprise security tools
Multi-Node Fileset Compare
The regular comparison of fileset copies should also be a part of the integrity monitoring process. For example, files that are replicated to backup environments or remote nodes need to be regularly compared to production files, to ensure their integrity.
Verify Elite’s Multi-Node Fileset Compare feature permits the comparison of filesets located either locally or across NonStop nodes. Using the file attribute information collected by the file integrity check process, Multi-Node Fileset Compare can evaluate any two selected filesets, identifying the matching attributes and differences between each. If a discrepancy is found, investigation and possible remedial action can then take place. It is now easier than ever to verify the integrity of your critical files!
CSP – Compliance at your Fingertips™
For complimentary access to CSP-Wiki®, an extensive repository of NonStop security knowledge and best practices, please visit wiki.cspsecurity.com
We Built the Wiki for NonStop Security ®
The CSP Team