Case study

How bwin has improved security, reduced administrative effort and made it easier....

Participating Company: 

With more than 1,200 employees in Stockholm and Vienna, the bwin Group is one of the world’s leading providers of online gaming entertainment. The company offers sports betting, poker, casino games, soft games and skill games via the Internet and other digital distribution channels in more than 27 different languages. Challenge All companies that process, store or transmit payment card data must comply with the Payment Card Industry Data Security Standard (PCI-DSS). This standard aims to prevent fraud, protecting both consumers and businesses from financial loss. Compliance with the standard also helps companies lower transaction costs significantly. Among other requirements, the most recent PCI-DSS specification calls on payment card processors to maintain a secure network, protect stored cardholder data, implement strong access control measures, regularly monitor and test networks, and maintain a comprehensive information security policy. With millions of customers, thousands of internal users and hundreds of applications and databases, bwin was spending significant time and effort compiling reports to prove its compliance with the PCI-DSS. Compliance was managed on a departmental basis, which was inefficient and made it difficult to ensure that the same approaches and policies were being applied uniformly across the company. To reduce the cost and effort of compliance and improve security reporting, bwin needed an automated, centralised solution for monitoring and managing multiple security log files.