Meeting compliance mandates in cybersecurity is challenging, especially when the focus is on mitigating immediately confirmed risk.
Mapping to specific standards and cyber frameworks is also critical as a way to guide how an organization structures its defenses, processes and cyber investments.
Centripetal has designed its CleanINTERNET solution to map directly to the security requirements for the Payment Card Industry Data Security Standard (PCI-DSS), SANS Top 20 Critical Security Controls, and the NIST NCSF Security Framework.
The Payment Card Industry Data Security Standard (PCI DSS) is a widely accepted set of policies and procedures intended to optimize how organizations secure credit/debit card transactions to protect cardholders against misuse of their personal information.
Centripetal delivers functionality required in the PCI DSS standard:
The NIST Framework is guidance based on existing standards, guidelines, and best practices for securing critical infrastructure to better manage and reduce cybersecurity risk. It was designed to foster risk and cybersecurity management communications amongst both internal and external organizational stakeholders.
Centripetal’s technology fits directly into the requirements for detection and response as published by NIST:
The CIS Critical Security Controls are a recommended set of actions for cyber defense that provide specific and actionable ways to stop today's most pervasive and dangerous attacks. A principal benefit of the Controls is that they prioritize and focus a smaller number of actions with high pay-off results.
Centripetal delivers a multi-functional set of capabilities that map directly to the SANS CIS Critical Security Controls:
"...a new defensive technology that goes beyond the firewall and IPS you use today which can bolster not only detection, but also improve prevention capabilities based on shared infrastructure intelligence."
Source: Lawrence Pingree, Garter Blog: Our Defenses Must Evolve, November 15, 2017 Evolve