SOURCE: Secure Computing

January 29, 2008 08:00 ET

Secure Computing Launches New PCI Initiative to Help Companies Respond to Compliance Requirements by June 2008 Deadline

SAN JOSE, CA--(Marketwire - January 29, 2008) - Secure Computing Corporation (NASDAQ: SCUR), a leading enterprise gateway security provider, today unveiled the company's new Payment Card Industry (PCI) Initiative, a multi-faceted program aimed at providing global organizations with the information, tools and best-of-breed solutions they need to comply with the new PCI Data Security Standard (DSS). Deadline dates for compliance are imminent, with the first 6.6 requirement of installing an application-layer firewall in front of all Web-facing applications taking effect June 30, 2008.

Key components of the initiative are education and expert resources, commencing with a PCI compliance Webinar on Thursday, Jan. 31, 2008 featuring guest speaker Chris Christiansen, vice president of Security Products and Services, IDC. A dedicated Secure Computing Website has also been developed to help educate organizations about the 12 major PCI requirements and provide information on how security solutions and best practices can help them comply with the new standard.

Secure Computing also offers a suite of comprehensive solutions to help organizations comply with the new standard, including Sidewinder®, its award-winning network and application-layer firewall that fulfills the first requirement by defending networks and Internet-facing applications from all types of known and unknown malicious threats.

PCI DSS is a widely accepted set of policies and procedures intended to optimize the security of credit, debit and cash card transactions and protect cardholders against misuse of their personal information. PCI DSS was created jointly in 2004 by Visa, MasterCard, Discover and American Express. It clearly outlines the 12 key requirements with which companies processing, storing, or transmitting payment card data must comply or risk losing their payment processing abilities. Merchants and payment card service providers must validate their compliance periodically with auditors.

"With the recent rise in data breaches containing credit card information and the alarming increase in identity thefts, the implementation of a sound information security program is no longer optional," said Chris Christiansen, vice president of Security Products and Services, IDC. "Companies processing credit card information must embrace and implement solid data protection strategies to ensure the confidentiality and integrity of their customers' confidential information. The cost of compliance is far less expensive than the cost of remediation, which more often than not also includes the high price of lost public confidence and overall brand equity."

Secure Computing's PCI Solutions and Website

With the deadline dates for compliance with PCI DSS looming, payment processing companies must implement solutions to protect their customers' personal data. Secure Computing offers a suite of integrated and secure solutions to help companies comply with all of the PCI requirements in the following ways:

--  Secure Computing Sidewinder® satisfies both PCI requirements for
    network and application firewalls with one comprehensive solution, enabling
    organizations to comply with the 6.6 requirement by the June 30, 2008
--  Secure Computing SnapGear® provides cost effective VPN security for
    retail stores, franchises or any point-of-sale deployment
--  Secure Computing SafeWord® provides strong authentication for remote
    and admin access for in-scope PCI systems
--  Secure Computing IronMail® automatically discovers and encrypts or
    blocks emails containing Primary Account Number (PAN) based on policy
--  Secure Computing Webwasher® helps prevent phishing and other malware
    attacks targeting PANs and user data

These solutions also help ease the burden of compliance with many other industry regulations, including the Gramm-Leach-Bliley Act (GLBA), Health Insurance Portability and Accountability Act (HIPAA), Sarbanes-Oxley Act of 2002 (SOX), and more.

"In addition to protecting against the onslaught of security threats, organizations today are required to demonstrate compliance with a growing number of industry regulations and standards," said Ken Rutsky, vice president of product marketing at Secure Computing. "Secure Computing recognizes the challenges facing our customers, and is committed to helping them simplify the process by providing all-in-one security and compliance solutions from one trusted vendor."

Secure Computing has also developed a dedicated PCI Website to provide organizations with information on the 12 major PCI requirements, best practices and solutions for compliance, expert opinions, current news on the topic and a directory of other resources. For more information, please visit

PCI Compliance Webcast Featuring IDC

To formally kick off its PCI Initiative, Secure Computing will host a free 75-minute Webcast featuring IDC's Chris Christiansen. The Webinar, titled "Straight Talk with IDC: How to Stay out of the Headlines with PCI Compliance" will be held January 31, 2008 at 1:00 pm EST. Those interested in attending may register at

In addition to presenting actual case studies and examples of customers that have successfully met PCI requirements, the educational Webcast will highlight a variety of PCI topics, including:

--  What are the benefits of PCI compliance?
--  What are the costs of PCI compliance (implementation vs. remediation)?
--  What are the implementation challenges facing companies and how can
    they overcome them?
--  Which technology solutions map to the various PCI requirements?
--  What are the best practices to achieve PCI compliance?

PCI Security Standards Council

As part of its initiative, Secure Computing is actively participating in the PCI Security Standards Council, an open global forum for the ongoing development, enhancement, storage, dissemination and implementation of security standards for account data protection. The PCI Security Standards Council's mission is to enhance payment account data security by fostering broad adoption of the PCI Security Standards. The organization was founded by American Express, Discover Financial Services, JCB, MasterCard Worldwide and Visa International. Participating organizations have an opportunity to influence the direction of PCI standards through active involvement in community meetings, advance review of drafts of standards and supporting materials, and regular dialogue with key stakeholders.

About Secure Computing

Secure Computing (NASDAQ: SCUR), a leading provider of enterprise gateway security, delivers a comprehensive set of solutions that help customers protect their critical Web, email and network assets. Over half the Fortune 50 and Fortune 500 are part of our more than 20,000 global customers in 106 countries, supported by a worldwide network of more than 2,300 partners. The company is headquartered in San Jose, Calif., and has offices worldwide. For more information, see

This press release contains forward-looking statements relating to the anticipated Secure Computing PCI initiative, and the expected benefits of such initiative and use of Secure Computing's security solutions, and such statements involve a number of risks and uncertainties. Among the important factors that could cause actual results to differ materially from those indicated by such forward-looking statements are delays in product development, undetected software errors or bugs, competitive pressures, technical difficulties, changes in customer requirements, general economic conditions and the risk factors detailed from time to time in Secure Computing's periodic reports and registration statements filed with the Securities and Exchange Commission.

Contact Information

  • Sarah Tolle
    Secure Computing Corporation
    Email Contact

    Paula Dunne
    Contos Dunne Communications LLC
    408-893-8750 cell
    Email Contact