Segmentation is central to PCI compliance, but meeting PCI segmentation requirements for dynamic environments can be very challenging with static visualization and manual network-based segmentation. This can be particularly challenging for organizations aiming to comply with PCI-DSS 3.2’s new segmentation requirements by the February 1, 2018 deadline.
Illumio offers an alternative with real-time application dependency mapping and adaptive micro-segmentation.
The Adaptive Security Platform® (ASP) shows you what systems and communications are part of your CDE in real time. This is an essential first step toward meeting PCI’s connectivity and data flow mapping requirements (PCI 1.1.2, 1.1.3). It also enables organizations to quickly and accurately scope their CDE as required by the PCI-DSS 3.2 revision, meeting PCI requirements and minimizing their audit exposure at the same time.
Undiscovered compliance challenges, like an unknown communication into your PCI environment, can slow or stop your audit. Illumio Explorer lets you identify problems before the audit start, and speed the audit along once it gets going. This saves your team time and money.
One of the biggest changes in PCI-DSS 3.2 is the increased focus on scoping the PCI environment to reduce compliance burden. Scoping your environment using traditional network segmentation tools can be challenging – especially if you want to take advantage of modern cloud and container technologies. Illumio’s host-based micro-segmentation lets you secure your PCI environment wherever it lives.
PCI requires that any PCI traffic that transits a “public, open network” be encrypted. Many organizations today have applications spread between multiple data centers and cloud deployments. Illumio SecureConnect encrypts your PCI traffic when it runs over public networks with a single click.
PCI requires that you validate your firewall rule sets, and review them at least every six months (PCI 1.1.6, 1.1.7). This can be slow and costly for organizations with many firewall rules. Illumio micro-segmentation simplifies your rule sets so you can save your team time and simplify your audits.