• No results found

Data Sheet: PCI DSS Compliant ecommerce Hosting

N/A
N/A
Info
Download
Protected

Academic year: 2021

Share "Data Sheet: PCI DSS Compliant ecommerce Hosting"

Copied!
6
0
0

Loading.... (view fulltext now)

Download now ( 6 Page )

Full text

(1)

Data Sheet:

PCI DSS Compliant

eCommerce Hosting

PCI Compliant Infrastructure

Multiple eCommerce Platforms Maximum Speed and Reliability

(2)

Every millisecond and every transaction matter to your business. Poor site performance, unreliable infrastructure and security vulnerabilities can derail the best-laid online revenue generation plans. Whether you sell tangible goods or intangible services, there are many challenges to executing your eCommerce strategy. Securing cardholder data, delivering consistent and fast page loading, matching infrastructure resources to seasonal demand and keeping up with compliance requirements are only a few of the never-ending hurdles to success.

PCI DSS Compliant eCommerce Hosting from Peer 1 Hosting helps Internet retailers overcome these hurdles and others. With optimized and scalable infrastructure resources designed to meet the stringent security requirements of the PCI DSS standard combined with our proprietary 10Gbps FastFiber Network™, retailers experience unmatched levels of performance and security. And our team of infrastructure experts possesses the practical experience to help eCommerce companies of all sizes and types successfully build their online businesses.

From Optimized Magento Managed Hosting solutions to IBM WebSphere® solutions—via our relationship with Tryzens (www.tryzens.com), an IBM Smarter Commerce Partner—we can design, deploy and manage the infrastructure for the most demanding and immersive eCommerce site.

Our facilities, administration practices and infrastructure are designed to meet the stringent requirements of the PCI DSS 2.0 standard and are periodically audited by an independent third party. For example, administrative access to your environment is controlled with two-factor authentication and monitored with full access logging. We also patch your operating system and deliver full file integrity monitoring.

Our teams of experts will deploy dedicated, enterprise-grade firewalls, fully manage their configuration and maintenance, and monitor their performance to deliver increased security for your PCI DSS Compliant eCommerce solution. A fully managed Security-as-a-Service WAF, built upon Alert Logic

technologies, provides proactive and heightened security.

Features

PCI DSS compliant infrastructure

Managed firewalls

(3)

Relentless Intrusion Detection leverages patented, cloud-powered technology to automatically identify malicious behavior patterns missed by traditional network security products, with possible threats subjected to round-the-clock expert analysis.

Log Management and Review automates the log collection, aggregation and normalization process, simplifies log searches, forensic analysis and report creation, and monitors file integrity. It also delivers real-time analysis of log data related to potential security incidents, such as account lockouts, failed logins, new user accounts and improper access attempts.

Our wholly owned and operated 10G FastFiber Network™ was designed from the ground up to deliver incredible performance to support rich, immersive eCommerce experiences. With 20 points of presence worldwide and over 1,500 peering relationships with other high-performance network providers, you can rest assured knowing that our network reaches everywhere you do business and delivers the performance your customers demand and expect. Our dedicated team of infrastructure experts has experience supporting a vast and diverse array of customers that leverage complex and demanding eCommerce platforms like Magento, WebSphere Commerce and Oracle ATG. They’ll work with you to design, deploy, maintain and secure an optimized infrastructure solution that meets your unique business needs.

Balancing website performance and user experience has always been a challenging and risky balancing act. Our optimized infrastructure, wholly owned and operated 10Gbps FastFiber Network™, and optional components like our CDN and AnyCast DNS™ tip the balance in your favor, enabling you to deliver the best experience for your online shoppers without sacrificing the performance that drives your online marketing efforts.

Whether you are completing a PCI DSS Self-Assessment Questionnaire or engaging in a third-party audit, our PCI-certified infrastructure and Service Provider Attestation of Compliance speeds your compliance efforts, enabling you to focus on securing other areas of your operations with greater thoroughness and efficiency.

With our fully redundant FastFiber Network™, state-of-the-art datacenters across the US, UK and Canada and our portfolio of managed add-on services, your PCI-compliant infrastructure is the same one that many Fortune 1000 companies rely on every day.

Our team of infrastructure experts is available 24x7x365 to ensure that your PCI DSS Compliant eCommerce solution runs smoothly and securely. They are ready to help with everything from designing the ideal solution to troubleshooting to handling the myriad and important day-to-day tasks that

Features (cont’d)

Benefits

Relentless Intrusion Detection

Log Management and Review

FastFiber Network™

Experienced team of experts

Deliver a compelling experience and performance

Speed to PCI DSS compliance

Proven reliability

(4)

Applications

Secure DB

Managed Firewall

Log Manager

Dedicated Load

Balancer

Web Server Database Server

Database Server Clusters SAN Intrusion Detection Secure Zone Secure VPN Secure Zone Application Server Application Server

Vigilant Firewall

Web

Optional Infrastructure Required Infrastructure

Customers

(5)

Options

Agile Load Balancing™ ensures that traffic gets distributed to the least-used server, further optimizing the performance of your eCommerce infrastructure. Powered by industry leader Neustar®, Global Load Balancing ensures smooth traffic flow with fully DNS-based global load balancing. This gives companies with a global footprint a powerful, cost-effective solution for balancing their traffic load across all available infrastructures.

Peer 1 Hosting’s Content Delivery Network further optimizes the performance of your eCommerce solution by placing valuable content like catalog images closer to your customers.

Comprised of 27 geographically dispersed clusters of high-performance servers powering your DNS lookups, AnyCast DNS shaves crucial milliseconds off the time it takes your customer’s browser to look up your website’s IP address. Less time performing DNS lookups means faster page load times and better SEO, which ultimately translates into more revenue for your business. Defiant DDos Shield defends against DDoS attacks more efficiently and cost effectively than traditional techniques. It scrubs dirty traffic clean, returning valid packets to your infrastructure for processing, without the need for expensive equipment or extreme remediation tactics.

Choose from local disk storage, Direct Attached Storage and Dedicated Disk SAN Storage options to power your eCommerce solution.

Our managed backup solution reduces your risk of data loss, restores data 15 times faster than tape and minimizes the disruption to your eCommerce solution should disaster strikes.

Put all the expertise of an experienced DBA at your disposal to help optimize your database and improve the performance of your eCommerce solution. Agile Load Balancing™

Global Load Balancing

RapidEdge CDN™

AnyCast DNS™

Defiant DDoS Shield

Flexible 1torage -ptions

SANǔased +anaged ackups

Database dministration .rogram

Peer 1 Hosting is a member of CIS (Center for Internet Security). CIS is a non-profit organization that serves as a central resource for the development and delivery of high-quality, timely products and services to assist its partners in government, academia, the private sector and the general public in improving their cyber security posture. CIS Security Benchmarks, a division of CIS, is a community of organizations and individuals seeking actionable security resources. As part of this community, Peer 1 has access to Consensus Security Configuration Benchmarks, Scoring Tools, Consensus Security Metric

definitions and discussion forums where we are an integral stakeholder in collaborating on security best practices.

Peer 1 has leveraged these resources to develop Hardened Operating System templates that are available to Peer 1 customers that need an extra level of security to comply with Requirement 2.3 of the PCI DSS Standards.

(6)

About Center for Internet Security (cont’d)

Disclaimer: The Hardened Operating Systems that Peer 1 provides are not part of the Peer 1 ROC (Report on Compliance). Customers will need their QSA to approve OS builds.

For more information about CIS and the benefits offered by this organization, please visit: https://www.cisecurity.org/

References

Download now ( PDF - 6 Page - 265.63 KB )

Related documents

The state of PCI DSS compliance. Irish Payments Services Organisation PCI DSS Explained

• PCI DSS coverage within security circles • PCI DSS Council Participating Organizations. PCI DSS in

PCI Compliance for Large Computer Systems

DSS= Data Security Standard PCI SSC= PCI Security Standards Council QSA= Qualified Security Assessor SAQ=Self Assessment... PCI DSS Structure

npc npc NPC PCI Program Protecting Your Business from Card Data Breaches

The Payment Card Industry Data Security Standard (PCI DSS) is an evolving framework designed to protect cardholder data.. This multifaceted security standard outlines the

Part 1: Common Mistakes in E-commerce and Best Practices

The Payment Card Industry Data Security Standard (PCI DSS) is a set of requirements designed to ensure that ALL companies that process, store, or transmit credit

Fraud Protection, You and Your Bank

any business which accepts credit, debit, or prepaid card payments to comply with the Payment Card Industry Data Security Standard (PCI DSS).  The PCI DSS is a global standard

PCI DSS in Essence Through practical examples. September, 2016 Septia Academy

The “PCI DSS in Essence” training course is designed for IT/IS Professionals, Security Officers, IT/IS Managers, who, in any capacity, deal with the PCI DSS

Payment Card Industry Data Security Standard (PCI DSS)

We have a focus on the Payment Card Industry Data Security Standard (PCI DSS), since Requirement #12 of the PCI DSS requires all Merchants to “maintain a policy that

Data Loss Prevention Best Practices to comply with PCI-DSS An Executive Guide

The Payment Card Industry Data Security Standard, PCI DSS, is a proprietary information security standard for organizations that handle cardholder information...