Company Background
Our client is one of the world's largest financial institutions, providing individual consumers, small/mid-market businesses, and large corporations with a full range of banking, investing, asset management, and other financial and risk-management products and services.
Challenges and Requirements
The company needed to meet PCI DSS compliance requirements, which required them to protect credit card data as it is transmitted, processed, and/or stored, impacting several processes throughout their organization. The company set out to protect and store this data for the mandated minimum of seven years. This information, however, was taking up space on their UNIX® Server, so the company also wanted a solution that could both encrypt and compress the data.
Every night, hundreds of thousands of settlement transactions containing confidential credit card information are sent to companies of all sizes. Without secure, dedicated lines set up for data transfer with smaller merchants, this confidential credit card data was sent via fax.
In an effort to secure this process, the company established an initiative to move all fax transmissions to email, electronically transferring encrypted data to multiple endpoints that would then need to decompress and decrypt the data after it was received. The data for these transactions originates on the company's z/OS® mainframe and is then transferred to an internal server before it is sent externally to merchants. The company needed a solution that would be easy to use and cost effective, especially for their business partners.
The Solution - SecureZIP
As soon as the company purchased SecureZIP, they quickly realized the solution could work for additional security initiatives throughout the organization. They engaged PKWARE® for assistance in achieving strong enterprise security across all major computing platforms.
The company wanted to use PKI to facilitate secure email communication, both internally and externally with business partners. SecureZIP was the only solution that could provide the level of functionality, customization, and ease of use required. The company also incorporated the RSA Keon Certificate Authority product, as well as the PKWARE ZIP reader, to round out the solution.
SecureZIP provided seamless integration with the centralized directories containing digital certificates issued by RSA. This supported the requirement for processing secure transactions, without slowing the delivery of reports to their partners. PKWARE's free ZIP reader extended the benefits of SecureZIP to the company's large network of partners, without requiring them to purchase additional software. As a result, our client is able to securely communicate with, and send information to, its partners, regardless of the computing environment or security infrastructure.
The company also needed to enable the secure exchange of confidential documents via email. Seamless integration with Outlook® was a necessity, in order for employees to easily use public key encryption through their email client. Once again, SecureZIP proved to be the best solution, providing the simple integration and user-friendliness the organization was looking for.
Our client deployed SecureZIP on their z/OS mainframes, UNIX Server, and on 1,700 desktops throughout the organization. They now have a consistent, corporate-wide, secure means of transferring sensitive information, both internally and externally with over 700,000 business partners daily.
Read more customer success stories on PKWARE's Website.
Visit our Homepage
PDF Version