Ipswitch adds PCI compliance to cloud file transfers

The company’s MOVEit MFT system is the first to certified by PCI-DSS to move sensitive data files around cloud services 

  • 10 years ago Posted in

Companies that store, process or transmit sensitive cardholder now have a certified tool to help with the job in the form of MOVEit from Ipswitch. This the first Managed File Transfer (MFT) service provider to be granted certification against the Payment Card Industry (PCI) Data Security Standard (DSS) 2.0 requirements for Level 1 Service Providers. As part of the compliance package, the company has also added a PCI Compliance Toolkit as an add-on to the MOVEit Cloud service.

Relying on MOVEit Cloud and its RoC will help organisations reduce the cost and time associated with achieving PCI compliance by drastically reducing the scope of annual audits. Companies not required to comply with PCI DSS can take comfort in independently-validated industry-leading security standards and processes protecting their data.

Ipswitch’s Level 1 Service Provider certification covers 100 percent of the requirements for PCI DSS 2.0. It provides a proven, compliant and vigilant security that supports secure managed file transfer needs and lowers risks of exposure. It also reduces the time and resources needed to achieve and maintain PCI compliance as well as providing a packaged PCI-Certified Environment that includes documentation and best practices for a streamlined approach to achieving and maintaining PCI compliance.

The PCI Compliance Toolkit is an annual purchase add on to MOVEit Cloud that includes all the tools customers need to demonstrate MOVEit Cloud’s PCI certification within the scope of their PCI assessment, performed by an independent QSA. It includes additional terms and conditions for PCI, including breach notification, an executive summary of Report on Compliance (RoC), and a Matrix of Controls that provides a line-by-line guide for MOVEit Cloud customers which controls they are responsible for, and which controls MOVEit Cloud is managing for them.

Ipswitch also offers a MOVEit Cloud Compliance Report that will capture information, from MOVEit Cloud logs and settings, needed to demonstrate compliance, and support in working with a Qualified Security Assessor. Here, Ipswitch’s compliance team will provide counsel and support for customers with questions and best practices on demonstrating PCI compliance using MOVEit Cloud.

“Ipswitch’s decision to make its cloud environment compliant with PCI DSS is an important move for the company, but also for the entire cloud delivery model,” noted Michael Osterman, principal analyst with Osterman Research. “By enabling PCI compliance in a leading cloud offering, particularly in the wake of recent revelations about more than 100 million cardholders’ information being compromised, retailers and others can be more confident about using the cloud to manage their sensitive data.”

 

New state-of-the-art data centre features Vultr’s first AMD GPU supercompute cluster.
Only a quarter (25%) think their approach to the cloud is carefully considered and successful.
Moving to AWS Cloud will enable The Co-operative Bank to adopt cutting edge IT Infrastructure.
The global airline group will upgrade the value of its data and get its AI & generative AI ready...
Barracuda Networks’s award-winning Email Protection and Cloud Backup security solutions will be...
Leading company in renewables to leverage HPE’s unique turnkey AI infrastructure solution to...
The four-year project extension focuses on cloud transformation and enhanced operational efficiency...
Businesses in the UK are risking slower development as they fail to fully embrace technologies that...