Case Study: Lush Cosmetics achieves centralized control, real-time threat visibility and PCI-DSS compliance with Fortinet

Green Retail Cosmetics Company Gets Serious About Cybersecurity in Its Stores

Lush Cosmetics, a socially conscious retailer with more than 230 stores in North America, faced growing security and visibility challenges as its store network expanded. Having outsourced firewall management left IT without usable threat analytics or easy access to PCI‑DSS logs, so the company decided to bring security back in‑house to regain control and meet compliance obligations.

Lush replaced store firewalls with Fortinet FortiWiFi appliances and centralized management via FortiManager (and FortiAP where needed), completing the rollout in about four weeks. The solution delivered single‑pane control of wired and wireless infrastructure, real‑time threat visibility and automated signature updates, prioritized PoS/ERP traffic, intrusion/URL/virus protection, and simplified one‑click PCI‑DSS reporting — restoring control, improving security, and enabling new network services and cost-saving opportunities.

Lush Cosmetics

Dale Hobbs

Manager of Network and Security Systems