Financial Service

Thales e-Security offers comprehensive data encryption and key management solutions that protect data across devices, processes, platforms and environments. The solutions help financial service providers protect their customers, meet government and industry compliance standards, facilitate security auditing and avoid the damage to reputation caused by data breaches.


Regulatory Compliance
The data security compliance and regulation challenges alone are daunting for banking and financial services firms. Data-at-rest security requirements are found within PCI DSS requirements for credit card related information, GLBA, SOX/J-SOX, NCUA, data privacy and data residency laws, and even the USA Patriot Act.

Securing Data
To protect their reputation banking and financial services firms and their executives must safeguard critical financial data from exposure.

Protecting Against Insiders, APTs and Future Threats
As financial services’ online infrastructures evolve and increase in numbers, procedures need to be in place to not only protect the data, but to also identify and alert the organization of unauthorized access.


Encryption Solutions
Thales solutions like Vormetric Data Security Platform, Vormetric Transparent Encryption and Vormetric Application Encryption provide a single extensible framework for protecting data-at-rest under the diverse requirements of the banking and financial services industry across the broadest range of OS platforms, databases, cloud environments and big data implementations. This results in a low total cost of ownership, as well as simple, efficient deployment and operation.

Strong Key Management
Key management solutions from Thales offer hardware-based key protection solutions with Thales HSMs and enable centralized management of encryption keys via Vormetric Key Management for other environments and devices including KMIP compatible hardware, Oracle and SQL Server TDE master keys and digital certificates. Thales also offers cloud key protection and management solutions with its BYOK offerings.

Payment Data Protection
Thales solutions are designed specifically for payment applications, payShield 9000 from Thales e-Security is a proven hardware security module (HSM) that performs such tasks as PIN protection and validation, transaction processing, mobile and payment card issuance, and key management. The solution delivers high assurance protection for automated teller machine (ATM) and point of sale (POS) credit and debit card transactions.

Vormetric Tokenization with Dynamic Masking lets administrators establish policies to return an entire field tokenized or dynamically mask parts of a field. With the solution’s format-preserving tokenization capabilities, managers can restrict access to sensitive assets, yet at the same time, format the protected data in a way that enables many users to do their jobs.


Meet Global Compliance and Regulatory Standards
With Vormetric Data Security Products, the banking industry can meet data-at-rest security compliance and regulatory standards while protecting information from data breaches across the enterprise, in the cloud and in big data environments.

Quick to Install
Thales e-Security can work with you to install its Vormetric Data Security solutions in weeks rather than months. Thales e-Security solutions work with most major operating systems, including Linux, UNIX and Windows servers in physical, virtual, cloud and big data Cardholder Data Environments (CDE).

Easy to Use
Vormetric Data Security makes it simple to solve security and compliance concerns by simultaneously protecting data in databases, files and Big Data nodes across public, private, hybrid clouds and traditional infrastructures. Central management of the entire data security platform makes it easy to extend data security protection and satisfy compliance requirements across the entire enterprise, growing as required, without adding new hardware or increasing operational burdens.

Related Resources

Solution Briefs : Data Protection Solutions For Financial Services Enterprises

Financial services organizations face unique challenges in their efforts to protect sensitive customer information in compliance with industry regulations and mandates. Adding complexity to this challenge, customer data can be found in a mix of systems and applications across the distributed enterprise – at rest, in use and in transit.


Research and Whitepapers : Complying with Payment Card Industry (PCI DSS) Requirements with DataStax and Thales e-Security

Merchants and organizations expect the underlying database to be highly secure and in compliance, as sensitive cardholder data will eventually be kept in the data store. DataStax Enterprise in conjunction with Thales e-Security offers a comprehensive data security solution for the data stored in Cassandra and helps organizations comply with PCI DSS requirements.

Securing data is a requirement for any organization – large or small – that handles debit, credit and prepaid cards, otherwise known as payment cards. These institutions must comply with security standards to help avoid a data breach, as they deal with sensitive customer information, including name, address and account number as well as the three digit security number on the payment card.

Download this paper to learn about the requirements of PCI DSS and how the joint Datastax – Vormetric solution can help ensure your compliance and security.