Barkly News
Maya Pattison
Dec 2017

Barkly Independently Certified for AV Efficacy and Meets PCI DSS Requirement 5


Photo by

We are proud to announce that the Barkly Endpoint Protection PlatformTM is certified for antivirus (AV) efficacy to meet Payment Card Industry Data Security Standards (PCI DSS) anti-malware requirements as specified in PCI DSS Requirement 5, providing organizations with the ability to replace traditional antivirus. The validation was provided in a report by Coalfire, a leading assessor for global PCI and other compliance standards across the financial, government, industry, and healthcare sectors.

In the report Coalfire states “The Barkly Endpoint Protection PlatformTM demonstrated multiple capabilities including fileless attack blocking, executable blocking, and exploit blocking, and performed attribute and behavioral analysis. The Barkly cloud-based software-as-a-service platform provides flexibility to manage endpoints, automatic upgrades for agents, alert configurations, manage override rules, and export incident data.”

For these reasons the report concludes, “All these capabilities make it an option for companies aiming to comply with PCI-DSS anti-malware requirements.”

“In 2017 54% of businesses were compromised, and as a result many companies are now looking to invest in new technologies. With this technical validation, Barkly customers and prospective customers can confidently replace their AV solutions with the knowledge that they meet PCI DSS compliance guidelines.”

— Mike Duffy, CEO of Barkly

Coalfire’s assessment found that Barkly’s endpoint protection platform provides coverage for PCI DSS Requirement 5: “Protect all systems against malware and regularly update anti-virus software or programs,” and provides the following capabilities:

  • Barkly detects and effectively prevents the execution of known malicious software
  • Barkly effectively mitigates malware by blocking malware and exploits
  • Barkly effectively generates logs of events such that malicious activity can be traced
  • Barkly can be prevented from being disabled by unauthorized users
  • Barkly provides features for Windows endpoints including support for virtualization environments.

In addition to PCI DSS Requirement 5 compliance, many organizations leverage NIST FICIC as a security framework for their cybersecurity posture and to address current and future computer and information security challenges. Coalfire also validated that the Barkly Endpoint Protection PlatformTM provides coverage for controls within the NIST FICIC “Detect” and “Respond” functions.

About PCI DSS:

PCI DSS is a framework that defines baseline technical, physical, and operational security controls necessary for protecting payment card account data. PCI DSS applies to any organization that stores, processes, or transmits Cardholder Data. The PCI DSS security requirements apply to app system components included in or connected to the cardholder data environment.

Maya Pattison

Maya Pattison

Maya is the Director of PR at Barkly. She has a strong background in media relations, crisis communication and media training. When not at the office, Maya expresses her creativity through digital photography and abstract painting.


Close the gaps in your security

See how Barkly blocks attacks other solutions miss.

See a demo


Stay informed!

Get the latest security news, tips, and trends straight to your inbox.

Stay informed!

Get the latest security news, tips, and trends straight to your inbox.