Netwrix Case Studies PayPoint Simplifies PCI DSS Compliance and Overcomes Shortage of Cybersecurity Skills

Edit This Case Study Record

	PayPoint Simplifies PCI DSS Compliance and Overcomes Shortage of Cybersecurity Skills Netwrix

PayPoint Simplifies PCI DSS Compliance and Overcomes Shortage of Cybersecurity Skills

Netwrix

Technology Category	Cybersecurity & Privacy - Security Compliance Sensors - Temperature Sensors
Applicable Industries	National Security & Defense Retail
Applicable Functions	Quality Assurance
Use Cases	Cybersecurity Leasing Finance Automation
Services	Cybersecurity Services System Integration
Challenge	PayPoint, a company that processes billions of dollars’ worth of payments each year, recognized the critical need to protect large volumes of sensitive data and improve their IT environment due to a changing threat landscape and regulatory environment. They also faced the challenge of a cybersecurity skills shortage, a common issue in their industry. PayPoint was required to adhere to PCI DSS compliance, which mandates organizations to ensure that various file tracking and monitoring systems are in place. They already had a File Integrity Monitoring (FIM) solution, but as they were going through an IT transformation, they needed to increase their FIM services, which would have significantly increased their costs. Increasing FIM services with PayPoint’s previous provider was problematic due to the high costs associated with processing client transactions. Read More
About Customer	PayPoint is a financial services company with a network of 60,000 stores. It provides pioneering retail technology, services, and omni-channel payment solutions, making life easier for millions of customers every day. The company processes $13 billion (USD) of payments each year and had a revenue of $278.5 million (USD) in 2019. PayPoint’s success and sustainable growth are driven by their desire to continuously innovate and create unrivaled customer experiences. The company is listed on the London Stock Exchange and is an integral component of the FTSE 250 Index. In 2017, PayPoint established an internal Cyber Security & Information Technology sub-committee to recognize the significance of cybersecurity, the need for increased focus, and the importance of a structured approach to continuously improving their cybersecurity and compliance posture. Read More
Solution	To address their challenges, PayPoint deployed Change Tracker across their organization. Change Tracker made achieving and maintaining continuous PCI compliance straightforward by providing built-in auditing and monitoring reports and templates. This gave PayPoint the confidence that any breach of compliance rule would be reported. Change Tracker’s integration with ServiceNow’s ITSM tool enabled PayPoint to have a closed-loop environment for change management. This meant that approved and authorized changes issued by ServiceNow could be validated, with a full audit trail of what had been changed and reconciled with the change request. Working with Change Tracker has helped PayPoint achieve a state of continuous PCI compliance, and it has eased the burden of having to conduct manual checks by giving PayPoint the confidence that any unauthorized changes taking place in their IT environment will be identified and treated accordingly. Read More Log in to view content
Contents

Technology Category

Cybersecurity & Privacy - Security Compliance

Sensors - Temperature Sensors

Applicable Industries

National Security & Defense

Retail

Applicable Functions

Quality Assurance

Use Cases

Cybersecurity

Leasing Finance Automation

Services

Cybersecurity Services

System Integration

Challenge

PayPoint, a company that processes billions of dollars’ worth of payments each year, recognized the critical need to protect large volumes of sensitive data and improve their IT environment due to a changing threat landscape and regulatory environment. They also faced the challenge of a cybersecurity skills shortage, a common issue in their industry. PayPoint was required to adhere to PCI DSS compliance, which mandates organizations to ensure that various file tracking and monitoring systems are in place. They already had a File Integrity Monitoring (FIM) solution, but as they were going through an IT transformation, they needed to increase their FIM services, which would have significantly increased their costs. Increasing FIM services with PayPoint’s previous provider was problematic due to the high costs associated with processing client transactions.

About Customer

PayPoint is a financial services company with a network of 60,000 stores. It provides pioneering retail technology, services, and omni-channel payment solutions, making life easier for millions of customers every day. The company processes $13 billion (USD) of payments each year and had a revenue of $278.5 million (USD) in 2019. PayPoint’s success and sustainable growth are driven by their desire to continuously innovate and create unrivaled customer experiences. The company is listed on the London Stock Exchange and is an integral component of the FTSE 250 Index. In 2017, PayPoint established an internal Cyber Security & Information Technology sub-committee to recognize the significance of cybersecurity, the need for increased focus, and the importance of a structured approach to continuously improving their cybersecurity and compliance posture.

Solution

To address their challenges, PayPoint deployed Change Tracker across their organization. Change Tracker made achieving and maintaining continuous PCI compliance straightforward by providing built-in auditing and monitoring reports and templates. This gave PayPoint the confidence that any breach of compliance rule would be reported. Change Tracker’s integration with ServiceNow’s ITSM tool enabled PayPoint to have a closed-loop environment for change management. This meant that approved and authorized changes issued by ServiceNow could be validated, with a full audit trail of what had been changed and reconciled with the change request. Working with Change Tracker has helped PayPoint achieve a state of continuous PCI compliance, and it has eased the burden of having to conduct manual checks by giving PayPoint the confidence that any unauthorized changes taking place in their IT environment will be identified and treated accordingly.

Impact #1	The implementation of Change Tracker has allowed PayPoint to achieve a state of continuous PCI compliance, which has significantly eased the burden of conducting manual checks. The company now has the confidence that any unauthorized changes in their IT environment will be identified and treated accordingly. The integration of Change Tracker with ServiceNow’s ITSM tool has also improved change management controls, providing a closed-loop environment for change management. This has ensured that approved and authorized changes are validated, with a full audit trail of what has been changed and reconciled with the change request. The strengthened protection and detection, along with the automation of processes, have delivered a business-critical level of security, providing peace of mind for the company.

Impact #1

The implementation of Change Tracker has allowed PayPoint to achieve a state of continuous PCI compliance, which has significantly eased the burden of conducting manual checks. The company now has the confidence that any unauthorized changes in their IT environment will be identified and treated accordingly. The integration of Change Tracker with ServiceNow’s ITSM tool has also improved change management controls, providing a closed-loop environment for change management. This has ensured that approved and authorized changes are validated, with a full audit trail of what has been changed and reconciled with the change request. The strengthened protection and detection, along with the automation of processes, have delivered a business-critical level of security, providing peace of mind for the company.

Benefit #1	Continuous PCI DSS compliance
Benefit #2	Improved change management controls via integration with ServiceNow ITSM
Benefit #3	Strengthened protection and detection

Benefit #1

Continuous PCI DSS compliance

Benefit #2

Improved change management controls via integration with ServiceNow ITSM

Benefit #3

Strengthened protection and detection

Download PDF Version

Overview

PayPoint Simplifies PCI DSS Compliance and Overcomes Shortage of Cybersecurity Skills

Operational Impact

Quantitative Benefit