August 22, 2011Alert Logic, a leader in delivering on-demand Security-as-a-Service, today announced an expansion of its Payment Card Industry (PCI) Data Security Standard (DSS) compliance offerings. The announcement coincides with Alert Logic’s recertification by the Payment Card Industry (PCI) Security Standards Council as an Approved Scanning Vendor (ASV). Alert Logic satisfied the new stricter Approved Scanning Vendor (ASV) Program Guidelines — the fifth consecutive year that Alert Logic has attained PCI ASV certification. Organizations accepting credit card data must have quarterly vulnerability scans to help ensure credit card data is safe. Recertification ensures that the vulnerability scans performed by Alert Logic rigorously validate customers are not vulnerable to the increasingly sophisticated attacks on their systems. Alert Logic’s unified compliance reporting and monitoring solution plays an important role in helping organizations address the hardest and most costly requirements of PCI DSS compliance. Alert Logic Threat Manager provides periodic vulnerability assessment by scanning customer networks internally, externally and in the cloud, identifying and prioritizing vulnerabilities. Alert Logic Log Manager gathers, stores and correlates important log data for audit review. Together with ActiveWatch and LogReview, which are among Alert Logic’s 24×7 Managed Security Services, customers benefit from expert human analysis, review and insight on real-time security threats and alerts. Alert Logic has enhanced several key security capabilities through technology partnerships and integration in order to provide organizations with the tools needed to achieve full PCI compliance. These enhancements include Web application scanning to handle Web-based infrastructure vulnerabilities, integration of Rapid7’s industry leading PCI scanner, ready integration for File Integrity Management (FIM) capabilities based on OSSEC, and Web application firewall (WAF) solutions from AppliCure and Imperva to offer customers a more robust and comprehensive suite of security capabilities. “These new capabilities complement Alert Logic’s offerings in native intrusion detection, vulnerability assessment and log management,” said Alert Logic Senior Vice President of Product Development and CTO Dave Colesante. “Alert Logic’s service provider partners and enterprise customers depend on us to help them achieve and maintain PCI DSS compliance, so this recertification is important validation of our standards and processes.” With Alert Logic Security-as-a-Service, service providers and enterprise customers get four distinct advantages: market leading security tools, fully managed ‘as-a-Service’ delivery model, integrated 24×7 Security Operations Center (SOC) services to monitor and provide expert guidance, and the ability to deploy anywhere a customer has IT infrastructure – including the cloud.