Optiv Security Announces SecurePayment@Optiv to Drive Holistic and Risk-Centric Security Across the Entire Payment Lifecycle; Further Helps Organizations Rationalize and Optimize Cyber Security

-- Enables Clients Across Retail, Travel, Financial, Healthcare and Hospitality to Go Beyond PCI Compliance and Achieve Comprehensive Payment Security --

DENVER – September 25, 2018 – Optiv Security, the world’s leading security solutions integrator, today announced SecurePayment@Optiv, an integrated portfolio of services and technologies that enables organizations to move beyond basic Payment Card Industry Data Security Standard (PCI DSS) compliance so they can implement comprehensive, risk-centric security across the entire payment lifecycle. This new reference architecture brings together expert services and leading-edge technologies across application security, network segmentation, encryption, identity and access management, threat intelligence, and incident response to deliver fully integrated payment security solutions for clients. SecurePayment@Optiv is the latest example of how Optiv helps clients build sustainable, risk-centric foundations for implementing proactive and measurable security programs.

“Payment security is the bedrock of today’s digital economy – buyers need to feel confident their payment data will not be compromised, regardless if they’re using a credit card, digital wallet, stored transaction or money transfer,” said Chad Holmes, Optiv’s chief services and operations officer. “This digital ecosystem requires an evolution in how merchants think about payment security. As organizations digitally transform and enable technologies such as mobile payment, they should be striving for a secure payment lifecycle that tackles business risks, activates program agility, and meets privacy and segmentation requirements – while maintaining compliance and optimizing existing technology investments.”

“SecurePayment@Optiv goes beyond PCI compliance with a solution that builds end-to-end payment security based on each client’s specific risk profile. This risk-centric approach results in a holistic payment security program that is designed to reduce risk of payment fraud and data breaches, and deliver comprehensive security across the entire payment lifecycle.”

SecurePayment@Optiv is aligned to provide comprehensive solutions across four dimensions:

• Risk Profile: The first step to moving beyond PCI is to understand the full extent of enterprise risk. Key to this is identifying who the most likely attackers are and which assets they are most likely to target, which regulations need to be addressed, and which systems and processes need to be rationalized and optimized to support a high-performance security operation. This information enables the creation of a strategic payment security strategy.
• Point of Sale: Organizations historically have been focused on securing credit card transactions. Today’s new security requirements are broader and require securing data across the entire payment lifecycle, as well as customer loyalty data. Merchants now must protect a multitude of potential point-of-sale vulnerabilities across credit card readers, Square readers, online payments, digital wallets, and more.
• Security Operations: Efficient security operations are critical to meeting breach disclosure windows and in minimizing the likelihood of breaches. These competencies are especially important as payments move between consumers, point-of-sale systems, credit card providers and issuing banks. A new focus on cyber resilience in addition to data protection requires a focus on DevSecOps and product security.
• Merchant Networks: Protecting against external threats is only half of the solution for payment security. Merchants also must protect against deliberate and accidental insider threats through strong identity and access management, application security, training and awareness programs, and more.

To learn more about SecurePayment@Optiv, please visit go.optiv.com/securepayment.html.