The foundation of any secure wireless network is a well-developed security policy that details all of the appropriate configuration and deployment requirements. The challenge facing IT organizations lies in enforcement. While the policy may be ‘bulletproof’ and account for all known vulnerabilities, it is only as good as the enforcement strategy behind it. While it is common for network components to strictly adhere to existing policies at initial deployment, over time the configuration may drift away from the approved policy standards due to changes made during troubleshooting or during outages. These changes are often no documented and are almost never backed out, leading to potentially insecure, out of compliance configurations.
By combining both passive system monitoring, active configuration checks and active incident response, nineSecure ensures that your wireless network continues to comply with established policies and, most importantly, with PCI guidelines. The monitoring and management tools put in place as part of the nineSecure service provide out security experts with the visibility and actionable information needed to keep your organization compliant. The nineBox deployed at your corporate datacenter runs periodic checks against the wireless infrastructure components including configuration comparison with known baseline, authentication and access control, password strength, use of default passwords or community strings and many others to ensure that component configurations remain compliant with both your security policies and PCI compliance guidelines. Changes made during troubleshooting or as part of an outage response will be identified and your staff can be alerted to ensure that these changes are documented or backed out.
In addition, the passive monitoring and active threat defense provided by the nineSecure sensors deployed at your retail establishments check the communications between your clients and access points to ensure they are operating within established policies and guidelines. These sensors monitor the authentication and encryption types used by active clients, broadcast SSIDs and access attempts to ensure that all communications are operating in compliance with your policies and PCI guidelines.
|  |
Services
Home |
Blog |
Twitter |
Newsletter
