Editorial & Advertiser Disclosure Global Banking And Finance Review is an independent publisher which offers News, information, Analysis, Opinion, Press Releases, Reviews, Research reports covering various economies, industries, products, services and companies. The content available on globalbankingandfinance.com is sourced by a mixture of different methods which is not limited to content produced and supplied by various staff writers, journalists, freelancers, individuals, organizations, companies, PR agencies Sponsored Posts etc. The information available on this website is purely for educational and informational purposes only. We cannot guarantee the accuracy or applicability of any of the information provided at globalbankingandfinance.com with respect to your individual or personal circumstances. Please seek professional advice from a qualified professional before making any financial decisions. Globalbankingandfinance.com also links to various third party websites and we cannot guarantee the accuracy or applicability of the information provided by third party websites. Links from various articles on our site to third party websites are a mixture of non-sponsored links and sponsored links. Only a very small fraction of the links which point to external websites are affiliate links. Some of the links which you may click on our website may link to various products and services from our partners who may compensate us if you buy a service or product or fill a form or install an app. This will not incur additional cost to you. A very few articles on our website are sponsored posts or paid advertorials. These are marked as sponsored posts at the bottom of each post. For avoidance of any doubts and to make it easier for you to differentiate sponsored or non-sponsored articles or links, you may consider all articles on our site or all links to external websites as sponsored . Please note that some of the services or products which we talk about carry a high level of risk and may not be suitable for everyone. These may be complex services or products and we request the readers to consider this purely from an educational standpoint. The information provided on this website is general in nature. Global Banking & Finance Review expressly disclaims any liability without any limitation which may arise directly or indirectly from the use of such information.

LIGHTCYBER REINVENTS INTRUSION DETECTION TO MEET PCI DSS REQUIREMENT 11.4

LightCyber, a leading provider of Behavioural Attack Detection solutions, has announced that Qualified Service Assessor(QSA) consulting firm, HALOCK Security Labs, has concluded that the LightCyber Magna™ platform meets the Payment Card Industry Data Security Standard (PCI DSS) intrusion detection Requirement 11.4 based on their testing of the product.

Requirement 11.4 calls for “use of network intrusion detection systems and/or intrusion prevention systems to monitor all traffic in the cardholder data environment and alert personnel to suspected compromises.” LightCyber Magna goes well beyond these requirements by providing full visibility into the entire attack lifecycle, rather than just the initial intrusion vector.Magna works by finding the anomalous operational behaviours of malicious insiders and external attackers rather than just finding known threats using attack signatures.

Jason Matlof, Executive Vice President at LightCyber
Jason Matlof, Executive Vice President at LightCyber

“Traditional security architectures largely fail to uncover active network attackers targeting payment card data,” said Jason Matlof, executive vice president, LightCyber. “Our unique approach to attack detection combined with the recent PCI compliance certification provides PCI regulated entities with a new level of security to turn the tables on would-be attackers, while simultaneously complying with PCI regulations.”

The LightCyber Magna platform uses behavioural profiling to learn what is normal on the network and endpoints,allowing it to detect behavioural anomalies that are indicative of an attack, including both external attackers and internal attackers. These behaviours can be identified early to reduce attacker dwell time and curtail attack activity. Magna presents a small number of actionable alerts with supporting contextual and investigative details to greatly enhance the efficiency of a security operations team in its detection and remediation operations.

“Given that advanced attacks are becoming common, it is imperative to evolve preventative security by adding a way to quickly find attackers that will inevitably get through an organisation’s defences,” said Tod Ferran, Managing Consultant, HALOCK Security Labs. “We tested the LightCyber Magna platform and determined that it not only fulfils PCI DSS Requirement 11.4 but also addresses internal attackers and ones that have managed to bypass perimeter controls.”

A recent LightCyber customer, Arriva Trains, was challenged by their QSA to not only fulfil PCI DSS but to also detect successful network attackers. Their auditor asked,“If you had an attacker on your network, how would you be able to detect it?”

Now, with LightCyber Magna deployed, Arriva Trains has addressed the PCI DSS breach detection requirements, while also achieving high levels of network visibility and giving them the ability to find a potential attacker early before theft or damage occurs. “We picked LightCyber because it could clearly show us what was going on,” explained Paul Stern, IT Network and Security Manager, Arriva Trains.

Network Traffic Analysis (NTA) solutions such as LightCyber Magna are ideally suited for uncovering post-intrusion activity, including internal reconnaissance and lateral movement, that cannot easily be identified through traditional attack signatures. In the Gartner report published on 20 September 2106, Defining Intrusion Detection and Prevention Solutions (G00310148), analysts Craig Lawson, Adam Hils and Claudio Neiva note that “Gartner has seen clients consider other NTA and breach-detection technologies instead of or as something different from IPS. For example, you have already deployed a NGFW and are comfortable with its IPS effectiveness, then subsequently opt for a dedicated NTA prevention instead of a discrete IPS is an option Gartner sees clients pursuing.”

Resources

White Paper on the Magna Platform and PCI DSS Requirement 11.4

Podcast with HALOCK Security Labs about strategies to prevent a data breach

Resource site about the Magna platform and PCI DSS