Instant notification and in-depth insight into all changes. Complete coverage for your PCI environment and requirement 11.5.
Monitor critical configurations to ensure a PCI-compliant state.
Monitor your PCI environment. Don't let unauthorized access occur with your routers, firewalls, and network devices.
The goal of PCI 10.5.5 and PCI 11.5 is to ensure the integrity of critical logs from the PCI environment and changes to files do not allow a breach of PCI data. While PCI 11.5 calls for file-integrity monitoring software such as CimTrak to look for file changes at least weekly, the true integrity of your PCI environment requires much more frequent monitoring. CimTrak provides real-time file integrity monitoring (FIM) without taxing your system resources.
This allows you to exceed the minimum frequency for file-integrity monitoring called for in PCI 11.5 and gives you added peace of mind that your PCI environment is secure and in a state of constant integrity. PCI 11.5 also discusses the importance of regularly monitoring the output of your file integrity monitoring (FIM) solution. CimTrak makes it easy by providing complete reporting on changes, as well as critical configurations.
CimTrak covers a broad array of systems in PCI environments, including servers, network devices, critical workstations, and even point of sale (POS) systems. Whether you’re a small retailer or a large payment processor, CimTrak can help.
Use file-integrity-monitoring or change-detection software on logs to ensure that existing log data cannot be changed without generating alerts (although new data being added should not cause an alert).
Deploy a change-detection mechanism (for example, file-integrity monitoring tools) to alert personnel to unauthorized modification of critical system files, configuration files, or content files; and configure the software to perform critical file comparisons at least weekly.
Automatically check for critical configurations on your systems for PCI Compliance