FFIEC News

Gala Coral Triumphs Over PCI Compliance with Splunk

(August 06, 2008)-- Splunk, the IT Search company, announced Gala Coral Group has chosen Splunk as its enterprise-wide solution for Payment Card Industry (PCI) compliance. The integrated gaming group, which includes Gala Casinos, Gala Bingo, Coral and Eurobet, has also rolled out Splunk to integrate security, application and network availability and provide reporting for change management.

The PCI project builds on Gala Coral's successful initial deployment of Splunk, which was already being used for secure central log collection and audit trail retention - key aspects of PCI. Gala Coral chose Splunk for PCI compliance because the solution cost-effectively indexes and can search massive amounts of IT log data from any source.

Splunk is deployed across all of Gala Coral's datacenters, indexing a wide range of data sources including Windows server logs, application logs, Top Layer, Check Point and CVS logs and metrics. Gala Coral has deployed Splunk for PCI Compliance and Splunk for Change Management - two applications for the Splunk IT Search platform. Splunk now addresses all of the IT data-related aspects of PCI compliance for Gala Coral, including: PCI control reporting, audit trail retention, secure remote access, daily log reviews, file integrity monitoring and secure central log collection. The Splunk PCI application offers over 55 reports, more than 90 saved searches, dashboards, and alerts.

"We selected Splunk above all other contenders to assist us in our PCI compliance initiative because of its ability to collate and report on any form of log file or data stream we require," says Peter D. Bassill, CISSP, Group Information Security Officer, Gala Coral Group. "This gives us highly granular logging information and enables us to turn any data into a concise management report. The ability for a number of members of IT staff to have controlled access to the solution also frees up the core IT team's time to focus on other issues, which is another real economic benefit for the Group."

"The challenge of complying with the PCI Data Security Standard (DSS) mandate is a difficult and moving target as PCI continues to evolve and IT infrastructure keeps changing. Working with Gala Coral Group to slash operational costs, reduce the risk associated with its 1bn pound Sterling business, and achieve ongoing PCI compliance demonstrates the power of IT Search as the new weapon for datacenter management", says Michael Baum, Co-founder and CEO of Splunk. "Splunk lets IT Operations, Security and Compliance teams across the enterprise more cost effectively manage complex, rapidly changing IT environments."

Please visit www.splunk.com. for more information.

Share or bookmarklet this web page at: