Ipswitch adds PCI compliance to cloud file transfers

The company’s MOVEit MFT system is the first to certified by PCI-DSS to move sensitive data files around cloud services 

Companies that store, process or transmit sensitive cardholder now have a certified tool to help with the job in the form of MOVEit from Ipswitch. This the first Managed File Transfer (MFT) service provider to be granted certification against the Payment Card Industry (PCI) Data Security Standard (DSS) 2.0 requirements for Level 1 Service Providers. As part of the compliance package, the company has also added a PCI Compliance Toolkit as an add-on to the MOVEit Cloud service.

Relying on MOVEit Cloud and its RoC will help organisations reduce the cost and time associated with achieving PCI compliance by drastically reducing the scope of annual audits. Companies not required to comply with PCI DSS can take comfort in independently-validated industry-leading security standards and processes protecting their data.

Ipswitch’s Level 1 Service Provider certification covers 100 percent of the requirements for PCI DSS 2.0. It provides a proven, compliant and vigilant security that supports secure managed file transfer needs and lowers risks of exposure. It also reduces the time and resources needed to achieve and maintain PCI compliance as well as providing a packaged PCI-Certified Environment that includes documentation and best practices for a streamlined approach to achieving and maintaining PCI compliance.

The PCI Compliance Toolkit is an annual purchase add on to MOVEit Cloud that includes all the tools customers need to demonstrate MOVEit Cloud’s PCI certification within the scope of their PCI assessment, performed by an independent QSA. It includes additional terms and conditions for PCI, including breach notification, an executive summary of Report on Compliance (RoC), and a Matrix of Controls that provides a line-by-line guide for MOVEit Cloud customers which controls they are responsible for, and which controls MOVEit Cloud is managing for them.

Ipswitch also offers a MOVEit Cloud Compliance Report that will capture information, from MOVEit Cloud logs and settings, needed to demonstrate compliance, and support in working with a Qualified Security Assessor. Here, Ipswitch’s compliance team will provide counsel and support for customers with questions and best practices on demonstrating PCI compliance using MOVEit Cloud.

“Ipswitch’s decision to make its cloud environment compliant with PCI DSS is an important move for the company, but also for the entire cloud delivery model,” noted Michael Osterman, principal analyst with Osterman Research. “By enabling PCI compliance in a leading cloud offering, particularly in the wake of recent revelations about more than 100 million cardholders’ information being compromised, retailers and others can be more confident about using the cloud to manage their sensitive data.”

 

Clumio Backtrack offers rapid, precise data recovery for DynamoDB, enhancing resilience for...
NinjaOne unveils its automated endpoint management platform on Google Cloud Marketplace, enhancing...
Tintri's VMstore is setting new standards in data management for Kubernetes, with significant...
The Optical Transport market is set to recover by 2025, driven by AI and cloud data center demands.
Civo introduces relaxAI API, offering UK organizations cost-effective and compliant generative AI...
Qodea Ltd. has acquired Beyond to enhance its presence in North America and support global clients...
LINX teams up with Megaport to enhance cloud connectivity for its members, offering seamless access...
Rackspace Technology unveils FAIR MCP Enterprise Accelerator on AWS, simplifying access to AI...