As part of our RetailCompli offering, we provide Local Area Network (LAN) segregation, which is critical in ensuring that the Cardholder Data Environment (CDE) is secure while also making your PCI DSS assessment commitments a lot easier.
There is a requirement to create and maintain a Cardholder Data Environment as part of a merchant’s PCI DSS Compliance Self-Assessment Questionnaire (SAQ). This questionnaire is designed to give you a good understanding of your security procedures and systems, to ensure you are not giving cyber criminals a way in to exploit your business.
Here at Retail Secure, we will segregate the LAN network, which means that the network handling payment traffic will be isolated from all other traffic. This will ensure that no other traffic has access to the Cardholder Data Environment, which will decrease the risk of a data breach by a significant degree while also reducing the scope of the PCI DSS assessment.
At present, you will have an open network with no secured LAN and this will contain everything from your POS systems and shopping tablets to security cameras and back office computers. However, with RetailCompli we create a PCI/CDE secured LAN Segment, which contains your POS systems and back office computer, granting access to vendors, payment processors and the HR/Payroll department only. Previously, everything from Extranet to social media would have had access to sensitive payment information.
You can see how this will make your security system much more secure; through creating a Cardholder Data Environment and a general office LAN, sensitive payment data is no longer available to everyone. LAN segregation can also simplify the isolation of Wi-Fi networks from the critical payment environment.
No one is immune to the threat of a security breach, which is why you need to take the steps to secure your business today. If you have any further questions about LAN segregation or would like to take advantage of RetailCompli, please do not hesitate to get in touch.
LAN segregation is an important part of network security in the current day and age. If you are to protect your business from the threat of a data breach, this is something you simply cannot ignore. LAN stands for Local Area Network, and thus LAN segregation merely means separating things that are on your network in order to restrict access. Therefore, you would keep all confidential data away from everything else on your network. This is an important step to take if you are to achieve PCI compliance. Keeping that in mind, read on to discover more.
For those who are unaware, PCI compliance is something you need to achieve if you take payment via debit or credit card at your business. Any company that stores, processes, or transmits cardholder data must adhere to the PCI DSS regulations. One of these requirements is to create a Cardholder Data Environment, which is what LAN segregation refers to. At present, it is likely that you have an open network at your business, with no secured Local Area Network (LAN). Everything will be contained on this network, from your back office computers and security cameras to shopping tablets and POS systems. This is very risky, as access to your open network will be fairly easy for hackers. All they need to do is find one loophole and they will have access to everything related to your business, including payment information and other confidential data. This is why LAN segregation is crucial. A CDE will be created whereby only the back office computer and POS systems are stored. Access will be limited to the Payroll/HR department, payment processors, and vendors only. This reduces the chance of a data breach by a huge degree.
Now you know about LAN segregation, what it is and why it is important, but do you really need to be concerned about it? Is cyber security relevant to your business? A lot of company owners think that data breaches only happen to big businesses – the likes of TalkTalk, Home Depot, and Sony, which we have all heard about. However, this could not be further from the truth. All businesses are targets; we are simply more inclined to hear about the larger companies and the more controversial data breaches, such as the Ashley Madison one. What you need to realise is that all businesses have something that cyber criminals want, from customer payment information to employee records. You may not have as much data as a big company, but if you have not got effective security measures in place hackers are going to see it as an easy payday. They know that large corporations invest heavily in network security systems and personnel. It’s going to take a lot of effort to hack into their systems. But, with smaller companies that do not take cyber security seriously, it’s easy for them to get in, which is why they are a target.
Now you know the importance of implementing network security, but with so many different solutions to choose from, how do you narrow down your search? Well, first and foremost, you, of course, need to make sure that LAN segregation is a key feature of the solution you select. Aside from this, there are other important security features you need to look for. For example, 24/7 monitoring is of paramount importance, as you cannot afford to be off the ball when it comes to cyber security. You should also choose a business that offers a sophisticated firewall for effective end-to-end protection. Not all firewalls are the same. You also need to look for a solution that is easy and straightforward to implement. There is nothing more frustrating than investing in a solution that is costly to put in to place and difficult to use. You should also make sure the company is easy to get in touch with and they have a good reputation in the industry. If clients have complained about security issues or they have been unhappy with the service they have experienced, it is advisable to look elsewhere.
Unfortunately, the harsh reality is that there is always the chance you could suffer a data breach. Of course, if you put effective security measures in place, this chance will be very, very minimal. But, it is still vital for all businesses to have an incident response plan in place so that they can react straight away if the worst does occur. After all, the vast majority of data breaches go undedicated for months, which causes further damage. When dealing with a data breach, it’s always advisable to act with full transparency and you should seek the assistance of a professional incident response team as well. It can seem better to handle the issue in-house, but there is every chance that it will be a stretch too far for your business. Aside from this, you need to act quickly. Don’t wait around for the perfect information. The longer you wait, the bigger the problem becomes. You also need to offer your customers as much assistance as problem. You should set up a helpline so they can make contact and ask questions. Needless to say, if you have chosen a top quality cyber security solution, such as the one offered by Retail Secure, you probably won’t have to worry about any of this.
Retail Secure’s cloud-based network security solution, RetailCompli, features LAN segregation as one of the main security features. Their affordable service also boasts a sophisticated firewall, a support line, and 24/7 monitoring, amongst much more. Not only does it reduce the chance of a data breach, but it guarantees PCI compliance for all businesses as well. To discover more, simply head to our website, www.retailsecure.co.uk. Alternatively, you can give us a call on +44 (0) 333 320 8848. We also provide an array of additional value-adding services, such as legally compliant WiFi.