fbpx
Share on:

What is PCI DSS? The Payment Card Industry Data Security Standard (PCI DSS) is an information security standard used to handle credit cards from major card brands and protect cardholder data from fraud.

Who does it apply to? The PCI DSS applies to any organization that accepts, transmits or stores any cardholder data.

PCI DSS 4

PCI DSS version 4 was released in 2022. Organizations within scope of compliance need to meet the following by March 31, 2024 to avoid compliance violations:

Requirement 10: Log and Monitor All Access to System Components and Cardholder Data. This is one of the 12 high-level requirements that has not changed and remains mandatory. 

10.4 – Audit logs are reviewed to identify anomalies or suspicious activity

10.4.1 – The following audit logs are reviewed at least once daily: All security events; logs of all system components that store, process, or transmit CHD and/or SAD; logs of all critical system components, and logs of all servers and system components that perform security functions (for example, network security controls, intrusion-detection systems/intrusion-prevention systems (IDS/IPS), authentication servers).

10.7 Retain audit trail history for at least one year, with a minimum of three months immediately available for analysis (for example, online, archived, or restorable from backup). 

Organizations need to meet the following new requirements by March 31 2025 (next year):

10.4.1.1 – New requirement for the use of automated mechanisms to perform audit log reviews. This requirement is a best practice until 31 March 2025.

This is currently a “best practices” requirement, but will be mandatory in 2025. When 10.4.1.1 is mandatory, manual review of logs will no longer be an option, and all organizations that fall under PCI DSS requirements must use a SIEM or other equivalent tool that automatically analyzes logs for signs of attacker behavior.

How Blumira Helps: Once Blumira receives logs from a supported system, our expert-created and maintained detection rules find logs that show evidence of attacker behavior in a system. If a rule is triggered, system administrators are notified, and if needed, Blumira SecOps support is available 24/7 to assist with urgent issues.

How You Can Easily Meet PCI DSS 4 With Blumira – Plus Satisfy Requirements for Next Year

Blumira’s SIEM (System Information and Event Management) solution collects your system logs, centralizes them, and automatically reviews logs in real-time to identify anomalies or suspicious activity. 

Logs are continually being reviewed, and when an anomaly is detected, findings (or alerts) are sent to you within minutes of initial detection for the fastest response times. Blumira also retains one year of your organization’s audit log history in hot storage, which means it’s immediately available to help with forensic analysis.

PCI DSS provides direct guidance on the types of solutions you can use to satisfy log review, including SIEM:

Manual log reviews are difficult to perform, even for one or two systems, due to the amount of log data that is generated. However, using log harvesting, parsing, and alerting tools, centralized log management systems, event log analyzers, and security information and event management (SIEM) solutions can help facilitate the process by identifying log events that need to be reviewed. 

Blumira’s SIEM + XDR is designed to be set up in hours to days using your existing team and infrastructure, with guided onboarding provided by our dedicated Solution Architects. Blumira’s 24/7 Security Operations team provides proactive and responsive support for critical priority issues.

“We’re required by CJIS and IRS Pub 1075 compliance to review our logs daily. Blumira has saved us time because we can’t monitor all of our logs — we would need a team of 100 to go through all of these logs manually.”

Mike Morrow, Technical Infrastructure Manager, Ottawa County Case Study

Save your team’s time and eliminate the need to hire costly security analysts to watch your environment around the clock – all while satisfying PCI DSS compliance in time for this year’s deadline (and while you’re at it, getting ahead of next year’s deadline too).

See how Blumira helps you meet PCI DSS compliance requirements
See a product demo
Sign up for free
Contact us to learn more

Resources:

 

# pci dss

Security news and stories right to your inbox!