Case Study: Regis Corporation achieves automated PCI DSS compliance and strengthened security with LogRhythm

Regis Corporation – Leveraging PCI DSS & LogRhythm to Drive InfoSec Best Practices

Regis Corporation, a global leader in beauty services with ~65,000 employees and over $2.5B in annual revenue, needed to protect customer payment and loyalty data across thousands of salon locations and diverse systems (AS/400, AIX, Linux, Windows, Mac, Cisco, Checkpoint, McAfee, etc.). Facing millions of daily logs and PCI DSS requirements, Regis found manual and home-grown log management insufficient and needed centralized, real-time collection, correlation, review and reporting — plus executive buy-in to fund stronger IT security that supports the customer experience.

Regis deployed LogRhythm to provide a single, integrated view of logs and security events with out-of-the-box collection, correlation, real-time monitoring and automated PCI reporting. The solution improved incident detection and response (escalating events before customer impact), automated compliance reporting, increased executive awareness of IT’s role in customer experience, and positioned IT as an enabler of reliable transactions and loyalty programs that support revenue growth.

Regis Corporation

Bernie Rominski

IT Security Officer