Case Studies How Payment Processing Provider CeloPay Simplified AWS Security with AlienVault

Edit This Case Study Record

	How Payment Processing Provider CeloPay Simplified AWS Security with AlienVault

How Payment Processing Provider CeloPay Simplified AWS Security with AlienVault

Technology Category	Analytics & Modeling - Predictive Analytics Application Infrastructure & Middleware - Data Exchange & Integration Cybersecurity & Privacy - Cloud Security
Applicable Industries	Finance & Insurance Software
Applicable Functions	Business Operation Quality Assurance
Use Cases	Predictive Maintenance Regulatory Compliance Monitoring Remote Asset Management
Services	Cloud Planning, Design & Implementation Services Cybersecurity Services System Integration
Challenge	Payment processing technology company CeloPay needed a PCI DSS-compliant solution to monitor security for its AWS-hosted SaaS offering. Manual log reviews were cumbersome, time-consuming, and susceptible to error, making it difficult to produce the required reports for compliance audits. CeloPay needed a way to improve threat detection and compliance for its AWS environment that could scale to meet the needs of a growing customer base. Additionally, when CeloPay applied to become a PCI Level 1 Service Provider, company leaders knew they would need an easier, more reliable way to provide the necessary data and reports to prove PCI DSS compliance. Read More
About Customer	CeloPay, based in Alpharetta, GA, provides a web-based SaaS solution that helps customers collect, store, and process credit card payment information in a secure environment to help protect against security breaches and credit card data theft. Founded in 2011, CeloPay allows customers to avoid the security risks of collecting credit card information via email or fax, providing a secure cloud-based environment for the collection, storage, and processing of credit card information. Built on AWS, CeloPay takes advantage of the comprehensive logging and reporting capabilities offered by AWS to track activity in their environment and detect security threats. However, as the company grew, CeloPay’s leaders realized that their manual log checking process was far too time-consuming to be sustainable over the long haul. Read More
Solution	AlienVault USM Anywhere provided many of the security controls required for PCI DSS in one integrated solution. Features include 'Out of the box' PCI DSS Audit Report templates, the ability to pull Amazon CloudTrail logs into one place for reporting and alerting, and easy deployment, being up and running within hours, not days. AlienVault USM Anywhere, available in AWS Marketplace, provides the security controls required for AWS PCI DSS Compliance in a single easy-to-deploy solution. With built-in PCI DSS audit reporting templates and centralized AWS log management, USM Anywhere simplifies compliance readiness. After deploying USM Anywhere, CeloPay was able to streamline daily security reviews, simplify log management, reduce the amount of time needed to create audit reports, and identify potential security threats in near-real time. Read More Log in to view content
Contents

Technology Category

Analytics & Modeling - Predictive Analytics

Application Infrastructure & Middleware - Data Exchange & Integration

Cybersecurity & Privacy - Cloud Security

Applicable Industries

Finance & Insurance

Software

Applicable Functions

Business Operation

Quality Assurance

Use Cases

Predictive Maintenance

Regulatory Compliance Monitoring

Remote Asset Management

Services

Cloud Planning, Design & Implementation Services

Cybersecurity Services

System Integration

Challenge

Payment processing technology company CeloPay needed a PCI DSS-compliant solution to monitor security for its AWS-hosted SaaS offering. Manual log reviews were cumbersome, time-consuming, and susceptible to error, making it difficult to produce the required reports for compliance audits. CeloPay needed a way to improve threat detection and compliance for its AWS environment that could scale to meet the needs of a growing customer base. Additionally, when CeloPay applied to become a PCI Level 1 Service Provider, company leaders knew they would need an easier, more reliable way to provide the necessary data and reports to prove PCI DSS compliance.

About Customer

CeloPay, based in Alpharetta, GA, provides a web-based SaaS solution that helps customers collect, store, and process credit card payment information in a secure environment to help protect against security breaches and credit card data theft. Founded in 2011, CeloPay allows customers to avoid the security risks of collecting credit card information via email or fax, providing a secure cloud-based environment for the collection, storage, and processing of credit card information. Built on AWS, CeloPay takes advantage of the comprehensive logging and reporting capabilities offered by AWS to track activity in their environment and detect security threats. However, as the company grew, CeloPay’s leaders realized that their manual log checking process was far too time-consuming to be sustainable over the long haul.

Solution

AlienVault USM Anywhere provided many of the security controls required for PCI DSS in one integrated solution. Features include 'Out of the box' PCI DSS Audit Report templates, the ability to pull Amazon CloudTrail logs into one place for reporting and alerting, and easy deployment, being up and running within hours, not days. AlienVault USM Anywhere, available in AWS Marketplace, provides the security controls required for AWS PCI DSS Compliance in a single easy-to-deploy solution. With built-in PCI DSS audit reporting templates and centralized AWS log management, USM Anywhere simplifies compliance readiness. After deploying USM Anywhere, CeloPay was able to streamline daily security reviews, simplify log management, reduce the amount of time needed to create audit reports, and identify potential security threats in near-real time.

Impact #1	A complete overhaul of daily security monitoring tasks.
Impact #2	Daily security reviews can be completed in minutes rather than hours.
Impact #3	CeloPay is alerted immediately to changes in critical security configuration settings and other potential security risks.

Impact #1

A complete overhaul of daily security monitoring tasks.

Impact #2

Daily security reviews can be completed in minutes rather than hours.

Impact #3

CeloPay is alerted immediately to changes in critical security configuration settings and other potential security risks.

Benefit #1	It took only about 90 minutes to be up and running.
Benefit #2	96% of breaches in the hospitality industry involved external attacks in 2016.

Benefit #1

It took only about 90 minutes to be up and running.

Benefit #2

96% of breaches in the hospitality industry involved external attacks in 2016.

Download PDF Version

Overview

How Payment Processing Provider CeloPay Simplified AWS Security with AlienVault

Operational Impact

Quantitative Benefit