COGNIZANT AWS CLOUD SERVICES PCI-DSS COMPLIANT CLOUD SOLUTION

SECURE YOUR ELECTRONIC PAYMENT CARD BUSINESS WITH COGNIZANT’S PCI-DSS COMPLIANT CLOUD SOLUTION ON AWS

AT A GLANCE

With the consumers demanding

hassle-free, seamless and convenient

transaction options, financial

industries too are joining the club of

digital businesses which are rapidly

adopting cloud for agility, scalability

and innovation. But the financial

transactions such as card or online

payments etc., need a secure and safe

environment that meets specific

regulatory requirements.

Card payment organizations can

accelerate innovation and meet

customer demand without sacrificing

security and compliance with

Cognizant’s PCI-DSS compliant cloud

solution delivered on Amazon Web

Services (AWS) cloud.

PCI-DSS compliant solution combines the power of cloud-on-demand

scalability, availability and flexibility with packaged, pattern-based

blueprint with a well-designed reference architecture.

This architecture leverages AWS PCI-DSS Level 3 compliance, is

complemented by flexible AWS automation capability, and is delivered

by Cognizant Cloud Steps Transformation Framework for an easier,

hassle-free deployment.

KEY FEATURES OF PCI-COMPLIANT SOLUTION

• Delivered by Cognizant Cloud Steps Transformation Framework

• Faster self-service and automated PCI cloud-based provisioning

• Packaged with built-in redundancy availability and scalability

requirements

• Integrated with Cloud360, Cognizant’s automated service

delivery framework for seamless delivery

• Third party assurance and certification from external partner

Powered by Cognizant Cloud Steps Transformation Framework

Understand the key requirements for PCI compliant architecture

Assess current business processes for payment card transactions

Design an equivalent AWS architecture as per requirements

Validate AWS PCI architecture models to be inline with business requirements

Define design components of the application to be hosted

Setup new or migrate application stacks into the target AWS environment

Test the functional/non-functional requirements of the stack to be PCI compliant

ACHIEVING A PCI-DSS COMPLIANT CLOUD

7. Restrict access to cardholder data to authorized

individuals only

8. Assign a unique ID to each person with system

access

9. Restrict physical access to cardholder data

10. Track and monitor all access to network

resources and cardholder data

11. Regularly test security systems and processes

12. Maintain a policy that addresses information

security

CORE BENEFITS AT A GLANCE

• Rapid transformation to a compliant state with a PCI-DSS

blueprint-powered by Cognizant Cloud Steps

Transformation Framework

• Enable merchants to be secure and resilient from external

threats

• An easy to develop, global, and highly scalable platform

available anywhere, anytime

• One-click provisioning of infrastructure accelerates rapid

deployment

• Reduces the overall cost of maintaining a PCI stack

• Fully managed by Cognizant’s Cloud360

governance platform with an optional third party

certification for certified compliance

SYNERGY BETWEEN COGNIZANT AND AWS TO

DELIVER PCI COMPLIANCE

Cognizant’s expertise on AWS cloud meets key PCI

technical requirements and expertise that maps to more

than 30 corresponding AWS services to deliver a robust

PCI-compliant infrastructure and a secure cardholder

data environment (CDE).

Cognizant’s PCI-compliant solution on AWS alleviates

the challenges of tracking and understanding the

compliant data flows required for various types of data.

1. Install and maintain a firewall configuration to protect

cardholder data

2. Do not use vendor-supplied defaults for system passwords

and other security parameters

3. Protect stored cardholder data

4. Encrypt transmission of cardholder data across open, public

networks

5. Use and regularly update antivirus software

6. Develop and maintain secure systems and applications

*As defined by PCI DSS act

12 Primary Requirements for PCI DSS Compliance*

COGNIZANT’S AWS EXPERTISE*

• 1500+ Trained AWS practitioners

• 900+ Certified AWS professionals

• 180+ Clients transformed to AWS

• 40+ Transformation blueprints

*As of June 2017

ACCELERATE YOUR BUSINESS WITH AWS - COGNIZANT PARTNERSHIP Cognizant is a Premier Consulting Partner for AWS. Choose Cognizant and AWS to gain industry leading partners with proven solutions. We will blend our system integration capabilities, accelerators, frameworks, and toolkits with our advisory, implementation and managed services along with best-in-class AWS cloud computing technologies and services to deliver a reliable, flexible cloud infrastructure that will drive business acceleration and transform your organization.

For more information about how Cognizant will enable your organization to realize the benefits of the cloud while ensuring PCI-DSS compliance, contact AWSCloudCoE@cognizant.com

AWS

+

Compute

PCI Eligible Services

Amazon EC2

Amazon EC2 Container Service

Auto Scaling

AWS Elastic Beanstalk

Management Tools

AWS Config

AWS CloudHSM

AWS CloudTrail

AWS CloudFormation

Networking & Content Delivery

Amazon CloudFront

Amazon Route 53

Amazon VPC

AWS Direct Connect

Elastic Load Balancing

Application Services

Amazon SWF

Storage

Amazon EBS

Amazon S3

Amazon Glacier

Database

Amazon RDS (MySQL Oracle)

Amazon RDS Aurora

Amazon Redshift

Amazon RDS (SQL Server)

Amazon RDS (Postgres)

Amazon DynamoDB

Amazon RDS (MariaDB)

Amazon SimpleDB

Security, Identity & Compliance

AWS KMS

AWS IAM

AWS WAF

Messaging

Amazon SQS

Analytics

Amazon EMR

Transformation Services

Cloud Steps 2.0 Framework

Accelerators

Build factory, Application migration

factory, Partner tools

Blueprints

Pre-packaged apps, Commercial

Off-The-Shelf (COTS) apps, Custom apps

Assurance Services

IPs and Assets

Integrated optional assurance service from

third party security

Managed Services

Cloud governance, Application migration

foundry, Cloud management fabric, SLAs,

Monitoring & billing, Integration with

on-premise resources

BENEFITS

PCI CompliantCloud

Cloud Paybacks

Time-to-market

Digital BusinessAgenda

Lower TCO

World Headquarters

500 Frank W. Burr Blvd.Teaneck, NJ 07666 USAPhone: +1 201 801 0233Fax: +1 201 801 0243Toll Free: +1 888 937 3277

European Headquarters

1 Kingdom Street Paddington Central London W2 6BD EnglandPhone: +44 (0) 20 7297 7600 Fax: +44 (0) 20 7121 0102

India Operations Headquarters

#5/535 Old Mahabalipuram RoadOkkiyam Pettai, ThoraipakkamChennai, 600 096 IndiaPhone: +91 (0) 44 4209 6000Fax: +91 (0) 44 4209 6060

© Copyright 2017, Cognizant. All rights reserved. No part of this document may be reproduced, stored in a retrieval system, transmitted in any form or by any means, electronic, mechanical, photocopying, recording, or otherwise, without the express written permission from Cognizant. The information contained herein is subject to change without notice. All other trademarks mentioned herein are the property of their respective owners.

ABOUT COGNIZANT

Cognizant (NASDAQ-100: CTSH) is one of the world’s leading professional services companies, transforming clients’ business, operating and technology models for the digital era. Our unique industry-based, consultative approach helps clients envision, build and run more innovative and efficient businesses. Headquartered in the U.S., Cognizant is ranked 205 on the Fortune 500 and is consistently listed among the most admired companies in the world. Learn how Cognizant helps clients lead with digital at www.cognizant.com or follow us @Cognizant.

VALUE PROPOSITION OF AWS SERVICES AND COGNIZANT SERVICES

*Services list as of June 2017