Compliance framework
PCI - DSS
The Payment Card Industry Data Security Standard (PCI DSS) is a set of security standards that must be met by all companies handling cardholder data. It is composed of both specific technical requirements as well as high-level requirements for policies, procedures, software development, and the IT architecture. Fulfilling the requirements can be challenging, and the process becomes more complicated when there are a large number of systems. The scope can be blurry where a large set of systems are interconnected via network, shared storage or Windows domain. Nanitor supports companies with PCI-DSS requirements in multiple ways, saving time and making the work more systematic and enjoyable.
Key benefits
01
Holistic view of the infrastructure
Overview of all devices, software, users, configurations, known vulnerabilities, and missing security patches matched against PCI requirements. The outcome is a prioritized task list across your whole infrastructure that makes your remediation systematic and enjoyable.
02
Risk-based prioritization
Make the most of your limited resources by prioritizing the highest-risk issues. Nanitor assesses the risk of discovered issues based on CIS, NIST or CVE Scores and assigns a prioritization score based on the asset criticality.
03
Blast radius minimization
Reduce the risk of lateral movement by hardening relevant configurations and addressing known vulnerabilities. The best practice benchmarks for security configurations and known vulnerability databases are included in the platform.
04
Automatic monitoring
Nanitor automatically (at 5-minute intervals) checks and reports on thousands of compliance-related security issues across your infrastructure. Trust is good, verification is better.
Managing the upcoming changes in PCI DSS version 4
The new version of the PCI DSS standards contains completely new requirements and modifies the existing requirements. Identifying the changes is a painful process and businesses have trouble creating action plans that ensure compliance to the new version of the framework. Your environment is also constantly evolving so you'll need to account for those changes as you review the requirements.
Configuration Management using CIS benchmarks
The Nanitor Configuration Management Security Component includes a flexible set of benchmark rules (depending on your industry requirements) to accommodate your security hardening efforts and meet your PCI-DSS requirements including 3.2.1 and soon 4.
User-friendly overview of critical patches
The Vulnerability and Patch Management Security Components give a clear overview of required patches and active vulnerabilities, helping you fine-tune your patching cadence. Remediation and progress reporting can be customized by platform groups (cloud, servers, networks, databases and desktops) and adjusted to the appropriate audience (from engineers to management).
Diamond Vision - what you can't see, you can't secure
The Nanitor Diamond prioritizes issues and works in harmony with the Remediation Management to systematically harden the highest-priority (risk-based) issues first. Focus on the most critical areas to start with and work your way down to the less vital issues as you strengthen your security posture.
Remediation Management
The Remediation Management Collaboration Component helps get you to your desired security state in a systematic fashion. Organize security issues into user-friendly projects, assign them to a responsible employee and keep track of progress.