Vormetric Boosts Customer Confidence in the Trusted Cloud -- Announces Coalfire PCI DSS Solution Guidance within VMware Environments

-- Vormetric Data Firewall Meets PCI DSS Requirements in Local Virtualized Environments and in vCloud-based Private, Public Clouds

SAN JOSE, California, Aug. 27, 2013 /PRNewswire/ -- Vormetric, the leader in enterprise data security for physical, virtual and cloud environments, today announced that leading PCI-qualified security assessor and independent IT audit firm Coalfire® has released findings that Vormetric Data Firewall™ helps support and manage Payment Card Industry Data Security Standard (PCI DSS) requirements 3, 7, 8, 10 & 11 within VMware environments. This solution mapping and guidance allows Vormetric and VMware customers around the globe to reap the flexibility and financial advantages afforded by VMware-based virtualized and cloud environments while maintaining confidence in the safe handling of sensitive information and their ability to meet even the most stringent audit requirements.

(Logo: http://photos.prnewswire.com/prnh/20130626/SF38541LOGO)

Click to Tweet: Boosting #CloudSecurity confidence in the cloud, @Vormetric announces Coalfire PCI DSS Certification within @VMware environments.

"In today's environments where data breaches are becoming more commonplace, trusting that sensitive data will remain protected in the cloud is the lynchpin for mass adoption," said Milin Desai, director, product management, VMware." Independent certification by Coalfire of Vormetric's ability to meet PCI DSS requirements across local virtualized environments and in VMware vCloud®-based public and private clouds will be very welcome news to merchants and service providers alike."

The PCI DSS standard provides baseline defense-in-depth structure or developing a robust account data security process - including preventing, detecting and reacting to security incidents. However, achieving PCI compliance is far from a simple task. Navigating the current landscape of information systems and adequately fulfilling all 12 of the PCI DSS requirements can quickly become a daunting task. Merchants and service providers are required to validate compliance by assessing their environment against nearly 300 specific test controls.  In addition to potentially serious brand reputation issues, failure to meet PCI requirements may lead to fines, penalties, and/or the inability to process credit cards.

"Vormetric has developed advanced encryption and key management solutions that help protect data and virtual machines in a cloud environment," said Noah Weisberger, Coalfire's Cloud and Virtualization Practice Leader. "And best of all, they have now provided guidance that their customers can use to effectively integrate the Vormetric technology solutions into their information security and PCI compliance management programs."

Working with VMware, Vormetric is taking an industry leadership role by providing its market leading Data Firewall technology and data security solutions to help customers meet their PCI compliance requirements from the data center to the cloud. The Vormetric Data Firewall solution includes privileged user control, centralized key and policy management, encryption of data at rest, and comprehensive security intelligence. It leverages policy-based access controls, separation of duties, and auditing capabilities, all of which can be centrally managed through a single console. Additionally, Vormetric provides automation capabilities that allow for integration with virtualization, cloud and enterprise existing installation and configuration tools as well as the capability to dynamically update policy based on real-time threats.

"This announcement underscores Vormetric's continued commitment to investing in cloud and virtualization technology solutions," said Sol Cates, Vormetric's CSO. "Clearly, we support enterprise customers' growing desire to extend their production applications into VMware-based virtualized and cloud environments. For any enterprise that processes credit card payments, this PCI DSS mapping and solution guidance from Coalfire provides important peace of mind. If customers use Vormetric Data Firewall technology in VMware environments, they can be confident that their sensitive data is protected — both in their local virtualized environments and in their vCloud-based public and private clouds."

For more detailed information about Vormetric/VMware integration, please see the newly released Vormetric Addendum to VMware Solution Guide for Payment Card Industry Data Security Standard.

About Vormetric

Vormetric (@Vormetric) is the industry leader in data security solutions that span physical, virtual and cloud environments. Data is the new currency and Vormetric helps over 1,100 customers, including 17 of the Fortune 25 and many of the world's most security-conscious government organizations, to meet compliance requirements and protect what matters — their sensitive data — from both internal and external threats.  The company's scalable solution suite protects any file, any database and any application — anywhere it resides — with high-performance, market-leading data firewall technology that incorporates application-transparent encryption, privileged user access controls, automation and security intelligence.

About Coalfire

Coalfire is a leading, independent information technology Governance, Risk and Compliance (IT GRC) firm that provides IT audit, risk assessment and compliance management solutions. Founded in 2001, Coalfire has offices in Dallas, Denver, Los Angeles, New York, San Francisco, Seattle and Washington D.C. and completes thousands of projects annually in retail, financial services, healthcare, government and utilities. Coalfire's solutions are adapted to requirements under emerging data privacy legislation, the PCI DSS, GLBA, FFIEC, HIPAA/HITECH, HITRUST, NERC CIP, Sarbanes-Oxley, FISMA and FedRAMP. For more information, visit www.coalfire.com.

Vormetric and Vormetric Data Firewall are trademarks of Vormetric, Inc. All other names mentioned are trademarks, registered trademarks or service marks of their respective owners.