Securing Your Retail Network


Segmenting a network into a card processing segments and non-card processing segments helps to protect cardholder data and minimize the scope of a Payment Card Industry (PCI) Data Security Audit. The card processing segments must then be carefully monitored and controlled to ensure that only authorized users and devices can connect to the network. Given the highly distributed nature and accessibility of wired and wireless networks within the retail industry, any IP-enabled device must be confirmed before it’s allowed to connect to a retailer’s network. Furthermore, if a device is removed from the network it should trigger an alert.

The simplest way to reduce the scope of a PCI DSS audit is to ensure proper network isolation for the systems that store, process, or transmit cardholder data. Without adequate network segmentation the entire network may be included within the scope of the audit. And no matter what type of segmentation you select, Qualified Security Assessors (QSA’s) regularly need to verify that the cardholder network is properly isolated and validate that every device that’s added/removed from your network is compliant, logged, and recorded.  Network Sentry/NAC can quickly and easily restrict and audit access to cardholder networks.

Leveraging Network Access Control, merchants can:

Bradford Networks - BYOD

Bradford Networks offers the best solution to enable secure network access for corporate issued and personal mobile devices. The company's flexible Network Sentry platform is the first network security offering that can automatically identify and profile all devices and all users on a network, providing complete visibility and control. Unlike vendor-specific network security products, Network Sentry provides a view across all brands of network equipment and connecting devices eliminating the network blind spots that can introduce risk.

Bradford Networks - Network Sentry/RTR

Network Sentry/RTR minimizes a threat's impact and the response time for remediation. Network Sentry/RTR leverages its unique Live Inventory of Network Connections (LINC) to automatically correlate high fidelity security alerts from the leading firewall and Advanced Threat Detection solutions, including FireEye, Fortinet, and Palo Alto Networks, with detailed contextual information on compromised endpoints, users and applications. Once identified, Network Sentry/RTR triggers an automated response, based on the severity and business criticality of the incident, to contain compromised devices in real time. Network Sentry/RTR also provides detailed historical information on all network connections, giving security experts unprecedented forensics to help fully understand and investigate the threat's methodology, lifecycle and scope.

Bradford Networks Pitches a Perfect Game for the Miami Marlins

Marlins Park is the spectacular new home of the Miami Marlins baseball team.

Throughout the ballpark there are thousands of different IP devices that are used to run the facility and venue events - including ATM machines, televisions and menu boards, LED display boards, point of sale terminals, sound systems, as well as PCs and laptops used by Marlins staff. For each game there can also be anywhere from 20 to 80 radio and television station personnel who need network access in order to broadcast the games. In addition to the sheer volume and variety, equipment is constantly being added and moved around the ballpark.

Hear how Bradford Networks' Networks Sentry secures the Miami Marlin's ballpark, providing secure, automated networks provisioning for thousands of infrastructure devices.