sss Products Services Solutions Knowledge Center Company
  NTO ASAP  
  NTO CISP  
  NTO SDP  
  Case Study: Siebel  
 
NTOCISP: NT OBJECTives Product and Training Suite for VISA CISP


In an effort to protect its cardholders from identity theft, VISA has created a very well thought out list of security requirements for its merchants. These are outlined in its Cardholder Information Security Program (CISP). NTO has created a packaged solution, NTOCISP to allow clients to efficiently and cost effectively achieve compliance with the application security portion of CISP using a single vendor.



See how NTO can help you comply with the Security Audit Procedures



CISP
CISP requirements can be broken down into 5 groupings:
  • Application Security (sections 4, 6, 11)
  • Network Security (sections 1, 2, 4, 6, 10, 11)
  • Security/Data Storage Business Processes, Access Controls (sections 3, 7, 8 and 12)
  • Anti-virus (section 5)
  • Physical Security (section 9)

NTOCISP
Resolving the application security portion of CISP will require organizations to develop and document a comprehensive approach to application security. This presents a significant challenge due to the lack of internal resources knowledgeable enough to complete the requirements. In response to this, NTO has created a Product, Training and Professional Services Suite to provide merchants with an integrated and comprehensive solution to address this portion of CISP. Included are the following:


  • NTOSpider - NTOSpider is the most automated and accurate application vulnerability scanner on the market for ensuring compliance with CISP application auditing requirements.
  • Training - NTO's industry-leading seminars are taught by published authors and leading researchers. They train auditors to find application security vulnerabilities and teach programmers the secure coding techniques they need to ensure that their applications comply with CISP.
  • NTO Professional Services - NTO's experienced team of consultants creates application development processes to ensure that best practices are employed in application development. NTO also creates security policies that enable compliance with the policies section of CISP.


Turnkey Solution
For those organizations who want to deal with a single point of contact to ensure CISP compliance, NTO has alliances with vendors and security consultants in network and physical security and can present a turnkey solution.























 

HOME SOFTWARE SERVICES SOLUTIONS COMPANY NEWS CONTACT US
Copyright © NT OBJECTives, Inc. All Rights Reserved.