Banking and financial institutions need to secure the storage, transit and use of corporate and personal data across applications, including online banking and electronic communications of sensitive information and documents. The typical IT environment consists of a mix of new and legacy systems and applications across highly distributed networks of branch offices, call centers and web portals. Many traditional point security solutions add complexity and management costs, including a variety of cryptographic materials, and leave gaps between systems and applications that are highly vulnerable to attack. A comprehensive data-centric approach to data protection that addresses the security and privacy needs for data at rest, in motion, and in use through the combined, integrated solutions of data-centric data protection with a tamper‑reactive hardware security module, companies are able to neutralize data breaches by protecting data rendering it useless to attackers.
HPE SecureData and HPE Atalla HSM streamline data protection and reduce management complexity. HPE SecureData with support for HPE Atalla HSM delivers a standards-based, data-centric security software solution and industry leading HSM for the hardened storing of the “master secret”.
Sensitive data, like PAN (credit card numbers), CCV/CVV (3 digit security code) and PII (Personally Identifiable Information) are being transmitted through mobile environments across various banking and financial institutions and present an ongoing challenge to securing that data as more mobile apps emerge to enhance customer service. The global nature of the financial services industry also makes it necessary to address international data security and privacy regulations.
HPE SecureData delivers data security across heterogeneous networks, protects email communications, file attachments, and payment card and personally identifiable information–in use, in transit and at rest. HPE SecureData Mobile extends the protection of sensitive data in native mobile applications and environments
Insurance companies must typically comply with numerous industry and government regulations including PCI DSS, the Gramm-Leach-Bliley Act, and the Dodd-Frank Wall Street Reform and Consumer Protection Act. In addition, it is critical to the corporate brand and reputation to protect the sensitive information of both customers and partners across the enterprise. This means securing data used by key applications including mobile apps, and systems including payment processing, underwriting, claims processing, human resources, email and file sharing, telemarketing, document management, application development and testing-and more. The integrated HPE SecureData and HPE Atalla HSM solution provides a comprehensive data security offering to address the challenges of end-to-end data protection through data‑centric security, and ensures the security from an HSM by safeguarding and managing system-level encryption keys, and with HPE SecureData Mobile, the protection of sensitive data is extended to native mobile applications and environments.
“One essential component of CUNA Mutual's end-to-end data protection initiative is its innovative use of HPE SecureData, which unites end-to-end encryption, tokenization and masking. We've never looked at security as a standalone function," Sysol noted. "It needs to be woven into every aspect of infrastructure and processes.”