PCI Data Security Standard
Service Profile
PCI Data Security Standard (PCI DSS)
Client Background
Customer is a global organization with a storefront utilizing a custom built content delivery and shopping experience.
Business Challenge
The customer needed to incorporate the PCI Data Security Standard (PCI DSS) as part of compliance with the Data Security Standard. This required introducing multi-layered security in an existing codebase which has been developed over many years.
Nabla Solution
Nabla developed a strategy for securing current applications and a set of policies to ensure future secure application development. Nabla used OWASP guidelines for securing applications and introduced a combination of “Apache mod security”, “F5 Web Application firewall”, and upgraded application security code with periodic “Burp” security scans along with automated and manual test procedures to verify and keep up with security vulnerabilities.
Benefits To Client
• Client can maintain its store presence and its online payment options and continue providing its customers with excellent service.
