OpenEye PCI Compliance Overview

-
OpenEye PCI Compliance Overview

Every business that handles card transactions deals with PCI compliance to safeguard the security of cardholder information. The PCI standards are designed to protect debit and credit card information from being stolen by ensuring that the cardholder data is separated on the network in the Cardholder Data Environment (CDE) and that there are processes in place to protect the CDE. It is important to follow PCI standards to ensure the integrity of your network and of sensitive information. Do you know if you are doing everything required?

PCI Standards

The requirements for meeting PCI standards are broken up into 12 key areas:

Build and Maintain a Secure Network and Systems

  • Install and maintain a firewall configuration to protect cardholder data
  • Do not use vendor-supplied defaults for system passwords and other security parameters

Protect Cardholder Data

  • Protect stored cardholder data
  • Encrypt transmission of cardholder data across open, public networks

Maintain a Vulnerability Management Program

  • Protect all systems against malware and regularly update antivirus software or programs
  • Develop and maintain secure systems and applicationsĀ 

Implement Strong Access Control Measures

  • Restrict access to cardholder data by business need-to-know
  • Identify and authenticate access to system components
  • Restrict physical access to cardholder data

Regularly Monitor and Test Networks

  • Track and monitor all access to network resources and cardholder data
  • Regularly test security systems and processes

Maintain an Information Security Policy

  • Maintain a policy that addresses information security for all personnel

The OpenEye PCI Compliance Review document outlines the basic requirements for meeting PCI requirements and provides a sample deployment to illustrate how the OpenEye system is installed outside the Cardholder Data Environment.

Download the OpenEye PCI Compliance Review for an overview of how to install an OpenEye video surveillance system and how it impacts PCI compliance. Make sure to consult your PCI compliance officer to provide an in-depth review.

Download the OpenEye PCI Compliance Review