The Retailer's Guide to Becoming and Remaining PCI Compliant
A policy-based solution would enable the configuration of multiple levels of control out to the endpoints as well as maintain the visibility to monitor the acceptance of the security and compliance awareness. This data will enable retailers to have the report capability to ensure their auditors have what they need to complete the validation process. This data will also be useful in gathering both acceptance and consumption of the compliance and security policy. This, in turn, leads to the ability of the retailer to get a true sense of risk to their enterprise at any given time.
At the end of the day, retailers that can harness the active intelligence that positive security provides and that can react quickly and efficiently to that one incident when it happens will be the ones who come out on top.
Chris Strand is a senior solutions consultant and compliance specialist for Bit9, a provider of endpoint and server security.