I was wondering if you could share your organization's security policies for machines running Tessitura that process credit cards. Do you allow unrestricted internet access and e-mail on these machines? Do you block access to certain things to decrease the probability of infection by key loggers, etc? If you do have restrictions, is it just a policy or do have have technology in place to block access?
Currently we do not have any restrictions on these machines but I am considering doing so. Pros, Cons, ?
Any info would be appreciated.
We do not have any restrictions on client workstations beyond an automatic password lock after 15 minutes of inactivity (controlled by Windows group policy) but other than that users are free to e-mail and use the internet. We do have a content filter in place for explicit material but nothing else.
-p.
Patrick Schley Academy Services Manager
FIRST STAGE
Transforming Lives Through Theater
325 West Walnut Street | Milwaukee, WI 53212 (414) 267-2970 direct | (414) 267-2976 fax