Case Study

PCI Compliance Case Study: MarketLive

If you have shopped online with leading catalogers, specialty retailers, and internationally known brands such as Norm Thompson, Sur La Table, or Armani, you have experienced MarketLive's expertise as a premier e-commerce solution provider. More than 250 world-class online sites have entrusted MarketLive to deliver stellar shopping experiences to their customers, necessitating both safeguards to protect cardholder information and compliance with industry regulations such as the Payment Card Industry's Data Security Standard (PCI). With an increasing number of retailers facing PCI requirements, MarketLive decided to create a strategic market advantage and become PCI compliant themselves. They turned to Tripwire for help, and then used the process controls enabled by Tripwire Enterprise as a springboard to improve IT operational efficiency and effectiveness.

MarketLive, Inc. offers the technology and hosting power behind online retail sites such as National Geographic, Gump's, Stride Rite, Trek Bicycles, and Sundance Catalog. These online retailers generate more than $2B dollars in sales annually. Because these merchants collect and often store customer data, they must meet the PCI regulation designed to secure credit card information. Even though MarketLive is not itself a merchant, the company saw that becoming PCI compliant would put them at a competitive advantage: they could prevent their existing clients from facing non-compliance penalties, and enable them to attract new business.

When MarketLive went shopping for a PCI compliance solution, they uncovered hundreds of options. They selected Tripwire because it is well-recognized and well-respected by auditors as an effective response to many of the PCI requirements. Tripwire's configuration control solution also gave MarketLive an automated method for improving change control processes, streamlining the build process, and increasing operational efficiency.