Financial service providers of all types are expanding their offerings to allow them to compete on a global scale, save costs and improve the customer experience with value-added services. But as financial services evolve, organisations must ensure their information security solutions are truly able to protect the sensitive data being acquired and transmitted.
Thales offers comprehensive data protection and access management solutions that protect data across devices, processes and platforms on premises and in the cloud. These solutions help organisations meet financial services compliance requirements, facilitate security auditing, protect their customers and avoid the damage to their reputations caused by data breaches.
Meeting financial services compliance requirements
Financial services regulatory compliance is daunting. Data security requirements are found within PCI DSS for credit card related information; the EU’s GDPR and PSD2; Singapore’s Monetary Authority’s Guidance; New York State’s Cybersecurity Requirements; GLBA; SOX/J-SOX; NCUA; data breach notification and residency laws; and many more around the world.
To avoid costly fines and protect their reputations banking and financial services firms and their executives must safeguard sensitive financial data against accidental exposure, rogue insiders, APTs and other known and unknown threats. And not only must procedures be in place to protect the data, but also to identify and alert the organisation, when unauthorised access occurs.
Thales solutions like CipherTrust Data Security Platform, CipherTrust Transparent Encryption and CipherTrust Application Data Protection provide a single extensible framework for protecting data-at-rest under the diverse requirements of the banking and financial services industry across the broadest range of OS platforms, databases, cloud environments and big data implementations. This results in a low total cost of ownership, as well as simple, efficient deployment and operation.
Key management solutions from Thales enable centralised management of encryption keys for other environments and devices including KMIP compatible hardware, Oracle and SQL Server TDE master keys and digital certificates.
Thales solutions are designed specifically for payment applications. PayShield 9000 from Thales is a proven hardware security module (HSM) that performs such tasks as PIN protection and validation, transaction processing, mobile and payment card issuance and key management. The solution delivers high assurance protection for automated teller machine (ATM) and point of sale (POS) credit and debit card transactions.
CipherTrust tokenisation with dynamic masking lets administrators establish policies to return an entire field tokenised or dynamically mask parts of a field. With the solution’s format-preserving tokenisation capabilities, managers can restrict access to sensitive assets, yet at the same time, format the protected data in a way that enables many users to do their jobs.
With our data security products, the banking industry can meet data-at-rest security compliance and regulatory standards while protecting information from data breaches across the enterprise, in the cloud and in big data environments.
Thales can work with you to install its data security solutions in weeks rather than months. Thales solutions work with most major operating systems, including Linux, UNIX and Windows servers in physical, virtual, cloud and big data cardholder data environments (CDE).
Our CipherTrust data security platform makes it simple to solve security and compliance concerns by simultaneously protecting data in databases, files and big data nodes across public, private, hybrid clouds and traditional infrastructures. Central management of the entire data security platform makes it easy to extend data security protection and satisfy compliance requirements across the entire enterprise, growing as required, without adding new hardware or increasing operational burdens.