Introduction to Penetration Testing
Penetration Testing, Pen Testing, Red Teaming, Security Assessment, IT Health Check and Ethical Hacking are common phrases that describe what we do, that ultimately all mean the same thing - whether or not a determined adversary can gain unauthorised access to your...
read more
PCI DSS – A start, not the end, for the business
It has been estimated that becoming fully PCI compliant gets you no more than 47% of the way towards a recognised industry standard for information security. In this case, ISO 27001:2013. The chart below shows a comparison of how the PCI DSS requirements stack up to...
read more
Supplier Due Diligence – do your existing suppliers take security seriously?
Supplier Due Diligence – do your existing suppliers take security seriously? As businesses become more reliant upon their suppliers within the digital age, it is essential that these relationships are reviewed and monitored to ensure security is being addressed and...
read more2|SEC Consulting are a Strategic Sponsor of the 19th PCI London event in July 2019
2|SEC Consulting are a Strategic Sponsor of the 19th PCI London event in July 2019, where you can hear from our experts through our keynote presentation and meet the team. For over 20 years, AKJ Associates has provided exclusive networking events for senior security...
read more
The UK Snow Effect: Tips for Business Continuity
As the short days get colder, one threat to UK businesses gets greater. One of few weather’s in the UK that can bring businesses, schools, roads and transport to a standstill. The white, snowflakes that bring joy to children’s faces and terror to business owners....
read more
How do I achieve and maintain ISO 27001 compliance?
By gaining certification or aligning your business to ISO 27001 (Information Security Management), you are demonstrating that you have identified the risks, assessed the implications and implemented controls to limit damage to the organisation. As well as building the...
read more
Equifax is charged the largest fine yet by the ICO for its data breach
The largest fine to date of £500,000 has been charged by the Information Commissioner’s Office (ICO) to Equifax for its data breach. The loss of personal data has affected 15 million Britons. The cyber-attack was carried out in 2017 which means it does not come under...
read more
3 of the biggest cyber and information security risks to businesses
When asked about cyber and information security risks to the business, most think about the technical controls against cybercrime: making sure the IT team has protections such as firewalls and patch management in place; making sure password protection and BYOD...
read more
Achieving CREST Cyber Essentials
What is Cyber Essentials The Cyber Essentials scheme helps organisations protect themselves against common online threats and demonstrate commitment to cyber security. This isn't just for technology companies. It is for any sector and any organisation that wants to...
read more
Cyber threat to UK legal sector 2018 report
Last week the UK Government and The Law Society released a joint assessment of cyber threats to the uk legal sector. The report was created following a request from the legal sector to government. It forms part of the National Cyber Security Centre’s (NCSC) mission to...
read more