As the number of ransomware attacks continues to rise, retail and healthcare organizations are increasingly challenged to keep pace. Ensuring employees are aware of common attack types and staying vigilant in testing, patching and monitoring your systems can drain the resources of any team. PCI DSS 3.2 and a managed security solution can help close the door on criminals trying to get into your systems. Learn how these tools can secure your environment from ransomware and help you more easily pass your audits — all while staying continuously compliant. This presentation discusses: - How compliance with PCI DSS 3.2 can protect you from ransomware - The benefits of Tripwire's managed service solution and continuous PCI compliance - How change detection can stop suspicious or unauthorized changes before they hold business critical systems hostage

1. Protecting Your POS Systems from the
Next Big Ransomware Threat
Onyeka Jones, Product Manager | Jason Iler, Services Solution Manager
March 14th 2018

6. The Pros of Adhering to PCI DSS

7. The Cost of Point-In-Time Compliance

8. The Cons of Adhering to PCI DSS
The Technical Skills Gap Compounds These Challenges

9. Continuous Compliance Lowers Costs
Continuous Security and
Compliance
• Lowers Cost
• Increases Efficiency
• Increases Security
• Reduces Risk

11. Tripwire ExpertOps Makes PCI DSS Compliance Easier
Tripwire ExpertOps combines
managed services with the
industry’s
best File Integrity Monitoring (FIM)
and
Security Configuration
Management (SCM)

13. Tripwire ExpertOps
Alerts and reports in your inbox
Waivers and change requests made easy
Recommendations and organizational
grading
Advice and support from a designated
Tripwire Expert

14. ExpertOps Architecture

15. All ‘Essential’ services
Tripwire ExpertOps Value
Value by Service Tier
Essential
Ideal for customers that are just
getting started with change
management or compliance
practices – i.e. check box
Provides day-to-day maintenance
of the console and managed nodes
Customers receive information that
helps them respond to change or
compliance issues
Advanced
Tactical tuning assistance
Customized reporting and
dashboards: more detailed analysis
of results
Dedicated problem resolution
support
Manage change notifications and
reduce burden of change
reconciliation re: patching (DSR +
EventSender)
Advanced Plus
Operational use plan provided with
best practice guidance
Assist with change reconciliation
and prioritized remediation
activities
Program coordinator to help
prioritize work activities
Integrations with change
management, incident
management and CMDB tools
All ‘Advanced’ services

16. How Tripwire ExpertOps Supports PCI DSS Compliance
Expert Guidance is provided to update your system and policy
configurations to align with your corporate policies
Continuous staffing to operate and manage your Tripwire solution at
peak efficiency
Adapts to your objectives—reports and profiling tasks are customized
to meet your changing objectives and priorities
24/7 access via cloud management console, also available as a
customer-hosted option

18. tripwire.com | @TripwireInc
Helpful Links:
https://www.tripwire.com/solutions/compliance-solutions/pci-dss-compliance/
https://www.tripwire.com/products/tripwire-expertops/