We're fortunate to have smart, hardworking engineers that we'd rather have focused on building great products, instead of managing IT infrastructure.Gautam Lulla, Chief Operating Officer
Industry Report: Cybersecurity Trends 2017
Whitepaper: The Shared Responsibility of Cloud Security
Solution Overview: PCI DSS Compliance
Want to learn about Alert Logic solutions?
Reshaping Reservations in the Cloud
AWS PCI Compliance
Travel Tripper provides central reservations systems, revenue management solutions, website design, and digital marketing services for the hotel industry. Every day, travelers make thousands of reservations at hotel properties powered by Travel Tripper reservation technology.
As an innovative and fast-moving company, Travel Tripper recently moved their IT infrastructure to Amazon Web Services (AWS) to take advantage of the flexibility, scalability, and affordability of AWS. One of the benefits of leveraging AWS is that it allows Chief Operating Officer, Gautam Lulla, to spend more time focusing on delivering great applications instead of spending time managing a datacenter.
Travel Tripper needed to find a company to help them achieve their security and compliance requirements. Lulla explained his three requirements when looking at security vendors: “first, they had to have security solutions that enable us to comply with PCI DSS; second, we needed a vendor that worked natively in AWS; and third, they needed the ability engage with us fast.”
Once we determined that Alert Logic had the core capabilities we needed and fully supported our AWS environment, we wanted to make sure they could work at our pace, and they responded; only a few weeks passed between our initial conversations and having fully managed security solutions in place.Gautam Lulla, Chief Operating Officer
Why Alert Logic?
For Travel Tripper’s core need of PCI DSS compliance, Alert Logic’s solutions address a number of key requirements, including:
- Vulnerability scanning and intrusion detection requirements (11.2 and 11.4), which are met with the Alert Logic Threat Manager solution. In addition, Alert Logic is a PCI DSS Approved Scanning Vendor (ASV).
- Numerous requirements that relate to log management and archiving (including 10.2, 10.3, 10.5, 10.6, and 10.7), and are addressed with Alert Logic Log Manager and daily log review service.
- Protecting web applications with a web application firewall (6.5 and 6.6), which is met with Alert Logic Web Security Manager.
According to Lulla, the biggest benefit to Travel Tripper in working with Alert Logic is peace of mind. They know that the information their customers provide using the Travel Tripper reservation engine is secured. Another significant benefit is employee productivity. The engineering team can focus on creating applications that build their business, instead of spending time securing IT resources or performing time-consuming duties like reading log files. A final benefit was the initial driver for Travel Tripper looking for security solutions: PCI compliance. “Alert Logic lets us go beyond simply being PCI compliant, both by taking time-consuming, ongoing compliance tasks off our hands and more important, being a security partner who’s monitoring our AWS environment constantly,” said Lulla. “We’re looking forward to growing with Alert Logic as we continue to grow our business.”