FISMA News

Nautilus Implements Cloakware Privileged Password Management to Meet PCI Compliance

(March 07, 2008)--Cloakware, the security solutions provider that makes security inseparable from software, announced Nautilus, Inc. has successfully deployed Cloakware Server Password Manager (CSPM) to achieve compliance with PCI Digital Security Standards (PCI DSS) and audit reporting requirements. CSPM, the industry’s first commercial Shared Account/Service Account Password Management (SAPM) tool, allows enterprises to bolster the protection of critical data, complete identity management strategies and manage commercial and government compliance programs, such as PCI DSS and Sarbanes-Oxley.

Nautilus, promotes its popular exercise equipment through a variety of sales channels including direct marketing, retail, commercial, Internet, catalog and international distributors. Because the company’s sales are predominately direct to consumer, the company faces a mandate to meet new and evolving security and compliance standards including PCI and government regulations such as Sarbanes-Oxley. Nautilus turned to Cloakware for an automated password management system capable of delivering the type of audit reports required to ensure compliance while making it easier than ever for the organization to protect confidential data, decrease system downtime and lower operating costs across the enterprise.

“Cloakware is helping us to reduce the risk of credit card fraud by providing a depth of security for our privileged passwords and an easily integrated audit reporting program,” said Steve Eichen, CIO from Nautilus. “In addition to enabling us to meet the Level II PCI DSS requirements quickly and easily, CSPM has reduced the amount of administrative overhead by automating a traditionally manual process.”

CSPM is a commercial off-the-shelf (COTS) solution that seamlessly integrates with multiple technology platforms to reliably streamline the privileged and application-to-application password management process. Too often, these types of passwords are all but forgotten and are rarely, if ever, changed. Such an oversight leaves organizations susceptible to failing to meet both commercial and federal compliance legislation (such as SOX, PCI, HIPAA, FISMA) that either implicitly or explicitly requires all passwords within an enterprise be managed and changed on a regular basis.

“Many large companies are facing increasing pressure to address an ever evolving array of security threats, as well as an ever changing regulatory landscape,” said David Canellos, Cloakware's interim president and executive vice president of worldwide sales. “Because CSPM runs on multiple platforms and supports a wide range of system configurations, Nautilus has been able to get up and running quickly and easily and successfully strengthen their security posture throughout the enterprise.”

Share or bookmarklet this web page at: