ManageEngine Adds PCI DSS 3.0 Compliance Reporting to SIEM Software

ManageEngine has added Payment Card Industry Data Security Standard (PCI DSS) 3.0 compliance reporting to EventLog Analyzer, its security information and event management (SIEM) software.

The Pleasanton, California-based IT management software company said EventLog Analyzer now makes users “audit-ready to meet the payment card safeguards defined by PCI DSS 3.0 requirements 10 and 11.5.”

“Using a product like ManageEngine EventLog Analyzer allows companies to run PCI compliance reports directly from the product,” ManageEngine President Raj Sabhlok told MSPmentor. “Areas where the company is not compliant will be clearly highlighted in the EventLog Analyzer report, such that the company can make the required modifications to gain compliance and secure cardholder data.”

PCI DSS 3.0 became active in January, and businesses that accept, store, process or transmit customers’ card data must adhere to the standard by the end of this year.

ManageEngine pointed out EventLog Analyzer provides an out-of-the-box PCI DSS 3.0 compliance reporting tool that can help companies comply with this standard.

“PCI DSS 3.0 compliance has become a crucial security element,” Chenthil Kumaran, ManageEngine’s product manager, said in a prepared statement. “The recent payment card data breaches at retail giants such as Target and Home Depot have elevated the need for organizations from various industries to secure their customers’ payment card data from threats.”

PCI DSS 3.0 compliance reporting tool can help IT security managers

ManageEngine noted the EventLog Analyzer PCI DSS 3.0 compliance reporting tool allows IT security managers to:

The IT management software company said EventLog Analyzer’s out-of-the-box reporting enables users to analyze audit trails and identify who is logging into their systems, when they logged into the systems and what activities they carried out on the systems.

EventLog Analyzer also now features a file integrity monitoring (FIM) reporting feature that fulfills PCI DSS 3.0 requirement 11.5, according to ManageEngine.

The SIEM software feature enables businesses to “track all changes happening to their files in real-time, such as when payment card data files are accessed, modified, deleted, renamed and created” and can reveal the name of the person who made changes to files as well.

Share your thoughts about this story in the Comments section below, via Twitter @dkobialka or email me at [email protected].