Reducing the Impact of PCI DSS Section 10.5
PCI DSS Section 10.5 requires compliant organizations to "Secure audit trails so that they cannot be altered."
The Challenges? Protecting your customer data requires audit trails to be secured against tampering, especially by privileged users. Ensuring the integrity of these audit trails can be complex and difficult, especially when privileged users and administrators have the capability to make changes at any time.
You must therefore know:
- How do you ensure that unauthorized changes are detected?
- How will you limit access to audit trails to reduce the risk of unauthorized changes?
- How can you detect who has access to make changes to systems and auditing files?
- What steps should you take to detect unauthorized changes quickly enough to limit damages?
- How do you determine what was changed and who made the change?
PCI DSS Section 10.5 Compliance with NetIQ
NetIQ's Security and Compliance Management solutions enable you to limit the number of privileged users who have access to the audit files, and to monitor for unauthorized changes by implementing powerful file integrity monitoring.
Your systems will be more secure and better equipped to meet the Section 10.5 requirements. You will be able to more easily:
- Detect attempts to change audit trails in real-time
- Determine who has privileged access to the audit trails
- Secure storage of log files to prevent tampering
- Reduce the number of privileged users with access to the audit trails
- Identify what has changed and who changed it
NetIQ's automated, detailed reporting on changes in real-time provides a more secure, better documented approach to meeting compliance with PCI DSS Section 10.5. It reduces the workload for your security teams and improves the security of credit card data, while reducing risk and easing the audit process.
