Yorkshire Building Society selects Unisys Stealth to secure customer data and achieve PCI compliance
Identity-driven segmentation and encryption from Unisys to help leading financial institution protect customer data
Unisys Corporation announced that its UK subsidiary has been selected by Yorkshire Building Society Group (YBSG), the UK’s second largest building society, to provide its Unisys Stealth® data protection product to secure customer information and facilitate compliance with the new Payment Card Industry Data Security Standards (PCI DSS).
To achieve and maintain PCI compliance, financial institutions need to securely control access to their organisations’ payment card data by only allowing authorised colleagues and technology to process and work with the information.
Under the terms of the five-year agreement, YBSG will use Unisys Stealth® to micro-segment its network to create secure communities of interest (COIs), consisting of YBSG colleagues and systems that have been authorised to handle customer data. This protects data transferred across its network from being accessed by unauthorised personnel or people outside the organisation, and also limits the scope of PCI audits providing further cost savings.
Unisys Stealth® provides YBSG a low-cost, operationally efficient PCI compliance capability designed specifically to protect sensitive customer data and network assets from the ever rising tide of sophisticated cyber-attacks, data breaches and hackers.
“Our key priority is to keep customer information secure, across the organisation. Unisys Stealth adds layers of protection, to the other multiple layers of protection we employ, to help protect our most sensitive data and achieve and maintain PCI DSS compliance,” said, Stephen Mulley, Head of IT & Change at YBSG.
Tom Patterson, Chief Trust Officer at Unisys, said:
“Many older security solutions used by banks and building societies are becoming impractical and expensive to maintain in today’s connected environments. Unisys Stealth® is software-based and identity managed, meaning it’s easy for financial institutions to configure and protect their most sensitive data and achieve PCI DSS compliance efficiently. Additionally, its identity-driven segmentation capabilities work as well in clouds and on mobile, allowing enterprises to overcome issues attached to firewall sprawl that many financial organisations are experiencing.”