PCI DSS compliance gives organisations 150% return in one year!
There is a huge misunderstanding, that PCI DSS compliance is expensive. What actually costs organisations a lot of money is to be non-compliant.PCI DSS compliance gives organisations 150% return in one...
View ArticleInformation Security Staff Awareness E-Learning – 2 in 1 Special Offer!
The insider threat probably represents one of the biggest risks to your organisation. Employees who don’t understand the risk posed by information technology may harm your business financially and...
View ArticlePCI DSS dissected – How do you scope cardholder data?
Compliance with PCI DSS should be considered the minimal level of security and does not ensure that an organisation is secure. However, compliance should ensure that an organisation has in place the...
View ArticleHow to ensure your data and call centre staff understand the 12 requirements...
With the decrease in the use of cash and cheques as a payment means, the use of credit and debit cards has increased. Whether it is payments by contactless swipe, chip and pin, or transactions via the...
View ArticleTips on Segregating the CDE
I am currently working on a new Implementer’s course for the Payment Card Industry Data Security Standard (PCIDSS) and am looking at examples of segregating the Cardholder Data Environment (CDE) from...
View ArticleNew supplements released from the PCI SSC
The PCI Security Standard Council (PCI SSC) have produced two new information supplements in January 2013, covering ATM security and e-Commerce. Both of these are available within the documentation...
View ArticleReview of the newly released documents by the PCI SSC
The PCI Security Standard Council (PCI SSC) has released the following documents in February 2013. They are available within the documentation library on the PCI Security Standards Council...
View ArticleSSL/TLS and the PCI DSS Requirement 4
The Payment Card Industry Data Security Standard (PCI DSS) consists of 12 requirements which were developed to protect cardholder data. Requirement 4 is about encrypting cardholder data as it is...
View ArticleThe route to PCI compliance is easy, isn’t it?
It should be easy. The PCI DSS has been around since 2005 and there are numerous vendors offering solutions to help you deliver compliance – from firewalls and encryption, through to access control and...
View Article3 time-saving tips for PCI DSS compliance
If your organisation stores, transmits or processes payment card data, PCI compliance is something you have to do – but as compliance is based on a self-assessment process for the majority of...
View ArticleBuild your career with cyber security training
With the increasing number of cyber attacks on organisations and governments worldwide the demand for qualified cyber security professionals is high. The UK National Audit Office revealed in their...
View ArticleDid the NY Times fail to ensure their suppliers were cyber secure?
A common mantra about cyber security is that your security is only as strong as the weakest link. But what happens when the weakest link is outside of your control? The Syrian Electronic Army (SEA) are...
View ArticleHow will PCI DSS v3.0 affect you?
PCI DSS v3.0 is finally out, but do you know what the major changes are and how they’re going to affect your organisation? Download our free PCI DSS green paper today to find out more. One of the major...
View ArticlePCI DSS V3.0: The Changes Explained Simply
On the 7th November, the PCI Security Standards Council released PCI DSS v3.0. Replacing v2.0, the new version will become applicable on 1st January 2014; however there will be a 12 month grace period...
View ArticlePCI Training Programme – Now Updated to PCI DSS v3.0
On the 7th November, the Payment Card Industry Security Standards Council (PCI SCC) published version 3.0 of the PCI Data Security Standard. For the seasoned IS veterans out there, you may have noticed...
View ArticleCyber War has already started! (The Criminals just didn’t tell you.)
IT GOVERNANCE CALLING UNITED KINGDOM C-SUITE MANAGERS: This post is about why you should book a place at our Cyber War London Event: Event: ISO27001:2013 and PCI DSS V3: new Standards in the Global...
View ArticleUK Government Protective Marking Scheme replaced by Government Security...
With effect from 2 April 2014 the UK Government Protective Marking Scheme (GPMS) is being replaced by the Government Classification System (GCS). This new system specifies three level of classification...
View ArticleCOBIT 5 for cyber security: want to know more?
COBIT® 5 is often seen as merely a business framework for the governance and management of enterprise IT, but what some don’t realise is that it can be used to address the growing threat from cyber...
View ArticleWant to avoid a breach? Become PCI compliant
Organizations that are compliant with the Payment Card Industry Data Security Standard (PCI DSS) are statistically less likely to suffer a data breach than those organizations that are not...
View ArticleNew Standards in the Global Cyber War
Spend the day at the Churchill War Rooms to learn how to protect your data in cyberspace with ISO27001, PCI DSS and the Cyber Essentials Scheme. There are only a few places remaining, so don't miss the...
View Article