A security software company specializing in host intrusion detection and prevention systems (IDS/IPS), Third Brigade (http://www.thirdbrigade.com ), announced an upcoming Webcast featuring Diana Kelley, security and PCI expert analyst, founder of Security Curve. The webcast, titled “ PCI Compliance: Cut Costs Not Corners,” will be held on Thursday, April 3rd, 2008 at 2:00 PM EDT and will detail two PCI compliance business cases where Third Brigade’s innovative approach offers cost savings to organizations faced with Payment Card Industry Data Security Standard (PCI DSS) compliance audits. This new approach uses a software-based solution to deliver comprehensive network segmentation, application firewall, virtual patching, and intrusion detection and prevention in a way that saves customers money, reduces deployment complexity and delivers greater security.

Just released, Third Brigade In addition, has sponsored Diana Kelley’s podcast titled “PCI Compliance: Re-Thinking Protection Inside the Box”. Diana Kelley discusses, in this podcast, the areas of PCI compliance where a host-based approach may prove to be a cost-effective alternative to physical separate and additional hardware based network devices.

Partner and Founder, Security Curve, Diana Kelley, said: “It’s time to take a second look at your PCI DSS compliance projects and consider host-based security capabilities like those provided by Third Brigade”. “Third Brigade protects cardholder data at the source, resulting in strong cardholder protection at a very attractive price point with the potential to save millions of dollars.”

President and CEO, Third Brigade, Wael Mohamed, said: “Organizations prefer our approach to PCI because Third Brigade not only helps them achieve and maintain compliance between audits, but it is also dramatically less expensive to deploy”. “We are pleased that Security Curve has recognized the effectiveness of our approach and see this as validation of our value to organizations that have to comply with PCI.”

Third Brigade Deep Security is an advanced, host-based intrusion defense system that provides:

    * Firewall network segmentation to reduce the scope of the PCI audit
    * Virtual patching to comply with requirements for vendor security patches to be applied within one month of release.
    * Intrusion detection and prevention of attacks that target cardholder data,
    * Application firewall capabilities to complement secure coding initiatives and to protect web applications from attacks
    * Enforcement of standard security configurations
    * Detailed log information on who attacked, when they attacked and what they attempted to exploit, and by providing an auditable report of the security posture of a system.