FFIEC News

Brabeion Unveils Enhanced PCI Assessment Solution

(Aug 12, 2008)-- Brabeion Software announced the availability of Brabeion for PCI, providing out-of-the-box support for PCI compliance programs that can cut costs and time to compliance by up to 50%, at a time when organizations struggle with inefficient manual processes and a dramatic rise in PCI compliance costs. Brabeion is first to market with unique PCI-specific best practice content that now includes over 300 survey questions for processes and roles as well as over 6000 technology configuration controls and procedures and survey questions. Brabeion for PCI provides customers with the ability to overcome the complexities in mapping their business and technology environment to PCI audit requirements to ensure audit readiness. Brabeion for PCI is available as a software-as-a-service hosted offering, as well as through a traditional licensing model.

Brabeion's announcement coincides with National Retail Federation's NRFtech 2008: the retail industry's most influential event for senior IT executives, being held this week in Denver, CO, of which Brabeion is a
sponsor.

"Over 1000 Level 1 and Level 2 companies are struggling with PCI and are coming to realize that the cost of PCI compliance is vastly underestimated. Achieving PCI compliance, avoiding fines and retaining the privilege to accept credit cards requires merchants and service providers to address approximately 180 individual PCI requirements in 12 categories. This is no small task -- and the entire program can be compromised by insufficient people, process, or controls," said Julian Waits, president and Chief Executive Officer for
Brabeion. "Brabeion is helping major enterprises achieve dramatic returns on their PCI compliance programs, and is pleased to be a sponsor of NRFtech 2008.

According to Gartner, "Level 1 and Level 2 U.S. merchants' spending on PCI compliance increased nearly fivefold during the past 18 months; 8% of retailers have been fined by the card brands for failing to comply with PCI, while 22% have been threatened with fines for their noncompliance. Gartner recommends, "Security audits should be conducted continuously or as frequently as possible, and not be limited to what's required by PCI."

Brabeion Software is the only company to provide a complete IT GRC management software solution and has gained public recognition as a leader over the past year by Fortune 500 companies and industry analysts. Brabeion for PCI allows customers to jump-start PCI compliance programs by conducting continuous, automated assessments internally or with 3rd parties and by providing the insight and information required to manage and mitigate risk. In addition, customers may easily add content from over 30 regulations
including SOX, GLBA and HIPAA as required, in order to leverage investments made in support of PCI requirements across the organization, as their IT GRC programs mature.

Brabeion for PCI provides out of the box policies, procedures, standards and controls along with assessment surveys allowing customers to streamline the compliance process, automate assessments and lower test costs by up to 50%. Customers can distribute surveys to employees and 3rd parties via web or MS Excel, and measure compliance with comprehensive, accurate PCI dashboards and reports.

For more information, please visit http://www.brabeion.com.

Share or bookmarklet this web page at: