Ipswitch adds PCI compliance to cloud file transfers

The company’s MOVEit MFT system is the first to certified by PCI-DSS to move sensitive data files around cloud services 

  • 10 years ago Posted in

Companies that store, process or transmit sensitive cardholder now have a certified tool to help with the job in the form of MOVEit from Ipswitch. This the first Managed File Transfer (MFT) service provider to be granted certification against the Payment Card Industry (PCI) Data Security Standard (DSS) 2.0 requirements for Level 1 Service Providers. As part of the compliance package, the company has also added a PCI Compliance Toolkit as an add-on to the MOVEit Cloud service.

Relying on MOVEit Cloud and its RoC will help organisations reduce the cost and time associated with achieving PCI compliance by drastically reducing the scope of annual audits. Companies not required to comply with PCI DSS can take comfort in independently-validated industry-leading security standards and processes protecting their data.

Ipswitch’s Level 1 Service Provider certification covers 100 percent of the requirements for PCI DSS 2.0. It provides a proven, compliant and vigilant security that supports secure managed file transfer needs and lowers risks of exposure. It also reduces the time and resources needed to achieve and maintain PCI compliance as well as providing a packaged PCI-Certified Environment that includes documentation and best practices for a streamlined approach to achieving and maintaining PCI compliance.

The PCI Compliance Toolkit is an annual purchase add on to MOVEit Cloud that includes all the tools customers need to demonstrate MOVEit Cloud’s PCI certification within the scope of their PCI assessment, performed by an independent QSA. It includes additional terms and conditions for PCI, including breach notification, an executive summary of Report on Compliance (RoC), and a Matrix of Controls that provides a line-by-line guide for MOVEit Cloud customers which controls they are responsible for, and which controls MOVEit Cloud is managing for them.

Ipswitch also offers a MOVEit Cloud Compliance Report that will capture information, from MOVEit Cloud logs and settings, needed to demonstrate compliance, and support in working with a Qualified Security Assessor. Here, Ipswitch’s compliance team will provide counsel and support for customers with questions and best practices on demonstrating PCI compliance using MOVEit Cloud.

“Ipswitch’s decision to make its cloud environment compliant with PCI DSS is an important move for the company, but also for the entire cloud delivery model,” noted Michael Osterman, principal analyst with Osterman Research. “By enabling PCI compliance in a leading cloud offering, particularly in the wake of recent revelations about more than 100 million cardholders’ information being compromised, retailers and others can be more confident about using the cloud to manage their sensitive data.”

 

Talent and training partner, mthree, which supports major global tech, banking, and business...
On average, only 48% of digital initiatives meet or exceed business outcome targets, according to...
GPUaaS provides customers on-demand access to powerful accelerated resources for AI, machine...
TMF Group, a leading provider of critical administrative services for global businesses, turned to...
Strengthening its cloud credentials as part of its mission to champion the broader UK tech sector...
Nearly all UK IT managers surveyed (98%) state cloud investment is an organisational priority for...
LetsGetChecked is a global healthcare solutions company that provides the tools to manage health...
Node4 to the rescue.