Global 500 Retail Company


  • Is concerned about protecting the following types of information:
    • Financial data
    • Credit Card information
    • Intellectual property
    • Customer PII
  • Require data protection during the following circumstances:
    • Unstructured data security
    • Legacy application security

Use Case

  • Applies Vormetric Data Security to adhere to global compliance regimes in the following ways:
    • Help meet requirements 3, 7 and 10 of the PCI DSS
    • Meet national data protection laws including UK Data Protection Act, EU Data Protection Directive and South Korea’s Personal Information Protection Act
    • Provide security, access control and reporting mandated by Sarbanes-Oxley, GLBA, and Basel III
  • Uses Vormetric Data Security to achieve the following:
    • Create strict access policies that ensure only authorized users can access sensitive information
    • Tightly monitor exposure, and implement transparent controls that do not impact how employees perform their jobs
    • Incorporate security intelligence that generates log information for behavioral analysis
    • Establish an appropriate separation of duties between IT operations and IT security
  • Uses the following SIEM solutions to identify possible internal threats or APTs:
    • Bitacora


  • Prevents the following insiders from accessing protected data with Thales eSecurity:
    • System administrators
    • Domain administrators
    • Network administrators
  • Purchased Vormetric Data Security for the following reasons:
    • Network-centric and perimeter security do not protect sensitive data
  • Rates the likelihood of recommending Thales eSecurity as 7 out of 10.