OVERVIEW

Vindi is a technology company focused on finance and payments, offering solutions for subscription management, credit card transaction processing, payment system integrations, and more. With nearly 10 years in the business, Vindi serves more than 6,000 customers, processing a total of more than 3 billion in Brazilian reais between 2020 and 2021.

When I joined Vindi, there were only 12 employees. Today, there are more than 160 people including 63 developers,” says Teógenes Panella, CISO of Vindi. Panella has worked in the industry for over a decade, and has followed the entire history of the company’s growth, which began with the major challenge of obtaining PCI DSS

CHALLENGES

Obtaining PCI DSS certification is neither a simple nor a cheap process. As the industry standard for credit card payments, PCI DSS brings a series of procedural and security requirements so that organizations like Vindi can be trusted to process these transactions. In addition to the high level of compliance required to obtain the certificate, the company needs to maintain a consistent high standard as it undergoes reassessment at least once a year in order to keep its accreditation.

For a start-up like Vindi, acquiring the certificate is crucial for their business. The company was created precisely to function within this segment, introducing solutions that were ahead of the market. The challenges of having a small team and budget adds pressure to this process, leaving no room for failure.

As security was a decisive part of the process, Panella searched extensively for a solution that not only met PCI requirements, but was also prepared to keep up with the company’s growth in information security. Vindi was born with a “cloud-first” approach, so advanced defense tools needed to be employed in this context, something that is not common in this market.

WHY TREND

After careful analysis, Panella understood that Trend Micro Cloud One – Workload Security was ideal to help the company obtain compliance. “The visibility that Trend Micro Cloud One – Workload Security provides was fundamental in the process of obtaining PCI compliance, and is important for our management,” says Panella.

SOLUTION

Workload Security brings quick and consistent responses for any issue, not only meeting PCI DSS standards, but also meeting the team’s need for greater consolidation of information, delivered by a single dashboard within the cloud environment. As Vindi’s team is relatively small, Workload Security’s single pane of glass gives the IT team a more efficient method of information management.

Panella also highlights the consistency and speed of scans in all environments that Workload Security provides, ensuring advanced security in cloud networks, corporate systems, and in Vindi’s overall environment.

“Workload Security brings quick and consistent responses for any issue, not only meeting PCI DSS standards, but also meeting the team’s need for greater consolidation of information, delivered by a single dashboard within the cloud environment,” says Panella.

RESULTS

With solid security and process compliancy reached, Vindi was successful in obtaining accreditation, and started operating successfully in the market.  Obtaining the PCI DSS certificate was fast, with no major issues and all security requirements successfully fulfilled.

“Obtaining the PCI DSS certificate was fast, with no major issues and all security requirements successfully fulfilled,” says Panella.

WHAT'S NEXT

As Vindi has grown as a business, the partnership with Trend Micro has only strengthened. “The cloud is the future. Development only tends to grow and become more agile in the cloud, and security needs to keep up with the pace,” says Panella. Vindi plans to strengthen its partnership by adding new Trend Micro Cloud One solutions for their environmentby relying on Trend Micro’s innovation and technology to protect its transactions and facilitate the growth of its business securely.