Download PDF
Leading eCommerce Retailer Achieves PCI Compliance in Record Time with Illumio
Technology Category
- Cybersecurity & Privacy - Cloud Security
- Cybersecurity & Privacy - Security Compliance
Applicable Industries
- E-Commerce
Applicable Functions
- Sales & Marketing
Use Cases
- Cybersecurity
Services
- System Integration
- Testing & Certification
The Challenge
A leading eCommerce retailer was facing a challenge in achieving PCI compliance for its payment infrastructure. The company's network was flat, and penetration testing revealed vulnerabilities that could expose its payment infrastructure to malicious activity if perimeter defenses were breached. The company needed to quickly segment their Cardholder Data Environment (CDE) from the rest of their applications to avoid critical findings during the PCI audit. The challenge was to isolate systems processing credit card data and mitigate lateral movement attacks in a heterogeneous hardware platform environment.
About The Customer
The customer is a leading eCommerce retailer. The company's environment includes the global credit card processing systems and Tier 2 systems that interface with applications inside the Cardholder Data Environment (CDE). The company was facing a challenge in achieving PCI compliance for its payment infrastructure due to vulnerabilities within its flat network. The company needed to quickly segment their CDE from the rest of their applications or they ran the risk of critical findings during the PCI audit.
The Solution
The company selected the Adaptive Security Platform® (ASP) from Illumio to segment systems processing credit card data. The solution leveraged two methods: user segmentation to ensure that only authorized users can access payment applications and via a secure channel, and environmental isolation of the CDE. The company utilized Illumio's real-time application dependency map, Illumination, to identify the Tier 2 systems that were included in the CDE and Policy Generator to automatically generate micro-segmentation policies. They also took advantage of Illumio’s pre-packaged Segmentation Templates, then tested security policies to quickly define and enforce segmentation rules. The roll out was completed within a month, with an easy deployment.
Operational Impact
Quantitative Benefit
Related Case Studies.
Case Study
Digital Transformation of Atlanta Grout & Tile: An IoT Case Study
Atlanta Grout & Tile, a Tile, Stone & Grout restoration company based in Woodstock, Georgia, was facing challenges with its traditional business model. Despite steady growth over the years, the company was falling behind the web revolution and missing out on the opportunity to tap into a new consumer base. They were using independent software from different vendors for each of their department information and workforce management. This resulted in a lot of manual work on excel and the need to export/import data between different systems. This not only increased overhead costs but also slowed down their response to clients. The company also had to prepare numerous reports manually and lacked access to customer trends for effective business decision-making.
Case Study
IFFCO Boosts IT Performance and Innovates Agriculture with Oracle Cloud
Indian Farmers Fertiliser Cooperative Ltd. (IFFCO), the world’s largest manufacturer and marketer of fertilizers in the cooperative sector, was facing several challenges in its quest to innovate and improve the livelihood of farmers in India. The organization had recently launched a new product, nano urea, which brought new demands to IFFCO’s cloud computing needs. The organization needed a reliable cloud vendor to support the processes of 6–7 new manufacturing plants during the upcoming year, enhancing its production capability 300–350 million bottles of nano urea to meet increasing demand. IFFCO’s cloud adoption was driven by a need to innovate. The organization wanted capabilities for a dynamic business that can adapt to the changing needs of the market while growing fast. However, it was inhibited by rigid on-premises data center deployments and the overhead of maintaining legacy systems. IFFCO wanted to apply the elasticity and availability of cloud for improving overall performance of applications at lowest possible operational overhead. Lastly, IFFCO needed to provide the benefits of its technology to all its stakeholders, including employees, members, transporters, and farmers, some of whom have limited literacy. To accommodate all stakeholders, IFFCO wanted to add a voice interface to its applications.
Case Study
7-Eleven Philippines Enhances Customer Support with Freshdesk
7-Eleven Philippines, a pioneer of 24-hour convenience stores in the country, was facing challenges with its customer support system. The customer support was outsourced to an external vendor, which resulted in limited visibility into customer query patterns and performance metrics. The company had no transparency into the vendor's analytics and could not validate their reports. They also had no visibility into the volume of calls, number of abandoned calls, etc. due to the use of the vendor’s telephony solution. This lack of control and visibility into customer support led the team to decide to bring the entire function in-house. They began exploring helpdesk solutions that would enable them to build a strong in-house support team.
Case Study
Kaafmeem Enhances Customer Operations with Freshchat and WhatsApp Integration
KaafMeem, a Saudi-based fashion e-commerce company, was facing challenges in its customer service operations. The company, which specializes in modern Arabic fashion, had traditionally used email and direct calls to handle sales queries, delivery information requests, and questions about refunds and replacements. However, they wanted to provide a more user-friendly channel for their customers to immediately access the Kaafmeem team. They were looking for a solution that would allow them to open a direct dialogue with their consumers, making the shopping experience as seamless and convenient as possible. The challenge was to find a platform that was popular among their customer base and could be integrated easily into their existing operations.
Case Study
Software Development Partnership with PrettyLittleThing: Enhancing E-commerce Capabilities
PrettyLittleThing, a rapidly growing UK-based fashion retailer, faced the challenge of expanding its software development capabilities to keep up with its business growth. The company needed a strategic tech partner who could assemble a team of dedicated software engineers with experience in developing e-commerce solutions and high load systems. The primary goals were to extend the in-house team with strong software engineers experienced in PHP, various JavaScript frameworks, AWS, and other technologies; automate the process of product creation on the client’s e-commerce website that has over 30,000 items; and speed up the software development process. The challenges included establishing effective communication and alignment among different distributed teams and developing functionality that helps manage thousands of products easily.
Case Study
Aramex Boosts Agent Productivity by 50% with Freshservice Implementation
Aramex, an international express, mail delivery, and logistics services company based in Dubai, was facing challenges in delivering consistent, quality IT services and support to its employees. As the organization grew, responding to service requests in a timely manner became increasingly difficult due to outdated processes and communication silos. Aramex was using an in-house legacy IT service desk that was rigid, ill-defined, and required constant resources to maintain and upgrade. The on-premise system was not easy to scale and could not keep up with the growing needs of Aramex. The company was in need of a flexible, agile IT service desk that could streamline its workflow and improve ticket resolution time.