McAfee’s solutions help you optimize for continuous PCI compliance through a layered security model that mitigates vulnerabilities and reduces the likelihood of data loss and theft. We also provide services for cost-effective scanning and assessment. Delivering more than just security technology, McAfee has specific solutions for point-of-sale systems, ATMs, databases, and other components in the scope of your PCI infrastructure. McAfee PCI Compliance solutions utilize the best of McAfee technology, including Global Threat Intelligence, as well as industry-leading system-level change prevention to ensure the continuous integrity of your PCI systems.
Our PCI solutions employ the McAfee ePolicy Orchestrator (ePO) software, a centralized security management platform that expedites processes from installation to reporting. The ePO software helps you automate PCI compliance reporting, reduce administrative overhead, and significantly cut costs.
McAfee Complete Data Protection — Advanced offers strong encryption, authentication, data loss prevention, and policy-driven security controls to help block unauthorized access to your sensitive information — anytime, anywhere.
McAfee Database Activity Monitoring stops attacks in real time, delivers sophisticated audit reports to help meet compliance requirements, and eases vulnerability remediation with virtual patching technology.
McAfee Security Scanner for Databases automatically finds databases on your network, determines if the latest patches have been applied, and tests for weak passwords, default accounts, and other common threats.
McAfee Virtual Patching for Databases shields databases from the risk presented by unpatched vulnerabilities. It detects and prevents attempted attacks and intrusions in real time, without requiring database downtime or application testing.
McAfee Content Security Blade Server protects enterprise networks from spam, malware, and other intrusions with a single, high-performance solution. Based on next-generation blade server architecture, Content Security Blade Server reduces IT costs, cuts complexity, and easily scales by inserting additional scanning blades to address future capacity requirements.
McAfee Host Intrusion Prevention for Desktop helps keep your business safe and productive by monitoring and blocking unwanted activity with a comprehensive three-part threat defense — signature analysis, behavioral analysis, and system firewall — all easily managed from one central console, the McAfee ePolicy Orchestrator (ePO) platform.
McAfee Host Intrusion Prevention for Server delivers protection from complex threats instigated by cybercrooks. It helps you maintain business uptime by protecting critical corporate assets, including servers, applications, customer information, and databases.
McAfee Firewall Enterprise is a next-generation firewall that restores control and protection to your network.
McAfee Network Security Platform is the industry’s most secure network intrusion prevention system (IPS). Backed by McAfee Labs, it protects customers on average 80 days ahead of the threat. It blocks attacks in real time, before they can cause damage, and protects every network-connected device. With Network Security Platform, you can automatically manage risk and enforce compliance — while improving operational efficiency and reducing IT efforts.
McAfee Network User Behavior Analysis delivers real-time visibility into what users are doing on your network and how they are using critical business applications. This intuitive view provides the decision support information you need to reduce risk and meet compliance requirements. Automated monitoring, based on packet capture, as well as analysis and instant correlation to security policy, dramatically increase accuracy and reduce the time and effort required to detect behavioral anomalies.
McAfee Total Protection for Compliance makes compliance easy with the industry’s first integrated solution for vulnerability management, compliance assessment and reporting, and comprehensive risk management.
McAfee Application Control ensures only trusted applications run on servers and endpoints. It reduces risks from unauthorized software, boosts endpoint control, extends the viability of fixed-function systems without impacting performance, and lowers operating costs.
McAfee Change Control enforces change policies and provides alerts to file integrity issues, while providing options to easily block unauthorized changes to critical system files and directories.
McAfee Change Reconciliation automates closed-loop processing of system changes for IT. It provides a comprehensive inventory of all changes and encapsulates the data within the ticketing system, flagging ad hoc changes and those made without approvals. Change Reconciliation easily integrates with other widely used change management systems.
McAfee Policy Auditor automates data gathering and assessment processes required for internal and external system-level IT audits.
McAfee Vulnerability Manager finds and prioritizes vulnerabilities and policy violations on your network. It balances asset criticality with vulnerability severity, enabling you to focus protection on your most important assets.
Detect and prevent the unauthorized transmission or disclosure of sensitive information. McAfee Foundstone reduces your risk of exposure by identifying sensitive data copied or currently in transit from its original intended container.
The FISMA Security Controls Assessment helps fulfill your organization’s Certification and Accreditation responsibilities under the Federal Information Security Management Act (FISMA) and allows you to achieve Authority to Operate with minimal residual risk.
Meet compliance requirements and improve your organization’s overall security posture. Foundstone experts help you implement an identity theft prevention program, analyzing data flow and risk, as well as developing policies for detecting, preventing, and mitigating identity theft.
Build a better, more effective incident response and management program. McAfee Foundstone analyzes the gaps in your incident management program and offers recommendations to improve your emergency response protocol.
Meet PCI DSS requirements. Foundstone’s PCI Security Solutions strengthen data security, ensuring you meet industry requirements.
Meet information security compliance requirements. McAfee Foundstone assesses gaps in your organization’s regulatory and compliance status and makes next-step recommendations.
Assess your vulnerability management program. McAfee Foundstone analyzes the gaps in your program to ensure you have the right balance of people, process, and technology.
This paper should help both technical and managerial staff in organizations that undergo PCI compliance assessments quarterly or annually.
BYOD, BYOA, BYOx. The IT industry is full of acronyms depicting its constant evolution and relationship with the professional world. First came the devices; employees saw the power of personal devices and insisted on using them in the workplace. And so the consumerisation of IT was born. After the devices came the apps. Companies reported […]
There’s been a lot of talk about the value of public-private partnerships in moving the U.S. toward a more robust cyber security posture. And let’s be honest: there’s also been a lot of private sector skepticism about how much the Administration really believed in the concept or how much they would do to make it […]
McAfee is based in Silicon Valley, but we know there’s more to tech than California. We recently joined the National Institute of Standards and Technology to launch the National Cybersecurity Center of Excellence, a joint effort among high-tech business, federal, state and local government and local universities located in Rockville, Md. The goal of the […]
The post Five Factors That Make D.C. Region a Cybersecurity Hub appeared first on McAfee.
Nothing is as frustrating as when something goes wrong, especially when you have time constraints. NIST has just released Special Publication 800-53, Revision 4: Security and Privacy Controls for Federal Information Systems and Organizations where a few notable items have been added to increase the confidence that security, practices, procedures and architectures of information systems […]
The National Institute of Standards and Technology (NIST) has updated its Computer Security Incident Handling Guide to take into account the increasingly dire state of cyber security. As anyone who has followed the rush of high-profile incursions over the past year knows, it’s looking less and less possible to prevent the inevitable attack, no matter […]