Big Box Retailer Meets PCI Requirements, Improves Security Posture Using LCM’s Life Cycle Approach

Written By Alyssa Mancuso

Client

Big box retailer with multiple locations in Canada.

Challenge

In 2012, LCM Security Inc. was approached by a bog box retailer who needed to become PCI Compliant. This client chose LCM because of our experience working with other retailers and the success with those organizations.

PCI Security Standards are developed specifically to protect payment account data throughout the payment lifecycle and enable technology solutions that devalue this data and remove criminals' incentive to steal it. The PCI Data Security Standard is designed to ensure that companies accept, process, store, or transmit credit card data within a secure environment.

Solution

LCM used PCI as a baseline to meet the broader security requirements for the client. Through our professional consulting and managed service operations, we worked with the retailer to build a cybersecurity business plan that would allow for PCI Compliance and overall improvement to the organization’s security posture.

This retailer is an excellent example of a successful implementation of the entire Life Cycle approach.

  • LCM began by assessing the organization against PCI Compliance, and then worked with the client to remediate the gaps uncovered during the assessment.

  • As part of the remediation, LCM's professional services group helped the retailer build a secure network environment by segmenting the network and implementing Next Generation Firewalls.

  • LCM also developed the supporting policies and procedures for communication and employee awareness, and adherence to processes across the organization.

  • Then, monitoring and vulnerability management were implemented to monitor security events and meet PCI visibility requirements.

  • The customer environment is reassessed on an annual basis, so that the organization can make continuous improvements to their security posture and fulfill governance requirements.

  • In 2019, LCM broadened the assessment process by conducting a full CIS assessment that included mapping to PCI Compliance.

MUST READ: 5 Cybersecurity Threats Retailers Need to Safeguard Against

Outcomes

The big box retailer has consistently met PCI requirements while continuously improving their security posture using LCM's Life Cycle Approach.

Contact us today to solve your cybersecurity challenges.

 ———

LCM Security Inc. was founded in 2001 solely to provide advanced network security solutions that enable organizations to better leverage and control their costs associated with the acquisition and management of Security Infrastructures.

Alyssa Mancuso
Previous

LCM Provides Cybersecurity Services for Higher Education Client