informa
3 min read
article

nCircle Automates New PCI DSS Requirements

PureCloud subscriptions support an unlimited number of scans for one low annual price
SAN FRANCISCO, CA—June 11, 2012— nCircle, the leader in information risk and security performance management, announced that nCircle PureCloud™ automates the new internal vulnerability scan requirements included in the most recent update to the Payment Card Industry Data Security Standard (PCI DSS). PureCloud is a powerful, low cost service that simplifies vulnerability scanning and PCI compliance through the combination of nCircle's proven, enterprise-class vulnerability scanning platform and a unique patent-pending scan technology. Together, these technologies deliver the most accurate, easy-to-use network security assessment tool available. nCircle delivers security and compliance solutions to two of the largest credit card brands driving the PCI Data Security Standard and has been a PCI ASV since 2007. Effective June 30, 2012, PCI will require evidence of quarterly internal vulnerability scans and both internal and external vulnerability scans after any significant network changes. The new updates also require the assignment of risk rankings to all vulnerabilities discovered during vulnerability scans, and evidence that all ‘high’ risk vulnerabilities discovered during scans are resolved. “The updated PCI vulnerability reporting requirements are a positive step for consumer credit card data security, and they will also dramatically improve network security for small and medium sized businesses,” said Brent Torre, cloud product manager for nCircle. “Every small business should have a regular, structured vulnerability scanning initiative as the cornerstone of their security program. nCircle PureCloud was purpose built to deliver robust internal and external scanning services to small and medium businesses in an easy-to-use, cost-effective manner.” The following nCircle PureCloud features make it easy for users to comply with the new PCI requirements: · PureCloud subscriptions support an unlimited number of scans for one low annual price, making it easy and cost effective for organizations to scan and re-scan internal or external networks after any major change. · PureCloud can be configured to scan automatically on user-selected schedules. Every scan produces a detailed report that can be used in audits to provide evidence that quarterly vulnerability scan controls are in place.

· PureCloud reports include vulnerability rankings that combine CVSS scores with other factors, such as exploit availability and vulnerability age. The resulting vulnerability ranking provides a comprehensive low, medium or high rating and remediation plan for all vulnerabilities discovered. · PureCloud reports meet all existing and new PCI DSS requirements and can be used in PCI audits to provide evidence of security controls in PCI audits as well as document the results of every vulnerability scan.

nCircle PureCloud pricing starts at $49 for unlimited scanning of an individual computer for one year, and volume discounts apply. You can scan one computer and receive in-depth security reports free through July 31, 2012. Find out more about PureCloud at purecloud.ncircle.com or call (415) 625-5930. nCircle is accepting PureCloud partner inquiries.

About nCircle

nCircle is the leading provider of information risk and security performance management solutions to more than 6,500 businesses and government agencies worldwide. nCircle solutions enable enterprises of all sizes to (1) automate compliance and reduce risk, and (2) measure and compare the performance of their IT security program with their own goals and industry peers. nCircle solutions may be deployed on a customer’s premises, as a cloud-based service, or in combination, for maximum flexibility and value.