Design Zone

Design Zone for Compliance

Hierarchical Navigation

Compliance Solution for PCI

Protect data and secure sensitive information.

Compliance Solution for PCI

Viewing this video requires the latest version of Adobe Flash Player with JavaScript enabled.

Get the Flash Player

Cisco Compliance Solution for PCI DSS 2.0 Design Guide

The Cisco PCI solution was developed to help organizations simplify and maintain PCI compliance. The solution consists of strategic guidance and tactical implementation. Cisco's enterprise-wide architecture experience is well suited to the requirements of PCI.

The Architectural Design section of the Guide discusses what merchants should consider when addressing PCI. It examines enterprise architecture, discusses the related controls within them, and separates architectures into their components.

The solution is designed to conform to PCI DSS 2.0. It has been validated in Cisco labs and assessed for compliance by a PCI Qualified Security Assessor (QSA) audit partner, Verizon Business. This enterprise architecture contains Cisco and partner products that holistically address customer business problems related to compliance and security.

SAFE Compliance Architecture Guide Supplement

This guide is particularly useful in light of the release PCI DSS v3.1, and the continued development of more harmful attacks, such as the Heartbleed Bug. The PCI Security Standards Council (PCI SSC) recommends that organizations transition to the TLS 1.2 protocol. SSL version 3.0 and TLS 1.0 should be completely removed by June 30, 2016.

Cisco has produced a white paper as a supplement to the PCI DSS Cisco Validated Design. It provides updated information on products and software to help your organization implement TLS 1.2 and maintain compliance.

Download White Paper

Cisco Compliance Solution for HIPAA Security Rule

Healthcare organizations must keep up with constant changes. The HIPAA Omnibus Final Rule of January 2013 strengthened the criteria for helping to secure protected health information (PHI). As of September 2013, all covered entities and business associates must comply with this rule. They must also understand the findings from the 2012 HIPAA audits.

The Cisco Compliance Solution for HIPAA Security Rule is a set of Cisco recommended guidelines for building a network to meet HIPAA technical requirements. Assessed by external auditors, this solution recommends a validated architecture to help you satisfy HIPAA technical safeguards effectively.

The design and implementation guide provides detailed configurations and insights to improve your existing network to:

  • Address HIPAA Security Rule technical requirements
  • Increase your network security to help safeguard PHI and other critical data

From this guide, you can also learn about:

  • Technologies that can meet your network needs
  • Design methods to satisfy HIPAA requirements
  • Strategies for speeding deployment

Cisco also provides compliance management services. You get compliance status updates for your network after you implement changes.

Additional Resources

PCI Compliance Resources

HIPAA Compliance Resources

Contact Cisco