Archive

It has been estimated that becoming fully PCI compliant gets you no more than 47% of the way towards a recognised industry standard for information security. In this case, ISO 27001:2013. The chart below shows a comparison of how the PCI DSS requirements stack up to the ISO 27001 control objectives: While this is a […]

Home | PCI DSS

PCI DSS – A start, not the end, for the business

by Inga Nikolajeva | Jun 18, 2019 | Article, PCI DSS

How do I make sure my business is cyber protected?

by Sally Morgan | Jul 5, 2018 | Article, Assure, Cyber Essentials, Detect, Information Security & ISO 27001, Managing Risk, NIST, PCI DSS, Prepare, Protect

Cyber security is a topic on every organisation’s radar. The continued threat of ever evolving cyber-attacks, combined with the introduction of GDPR compliance means that there are serious businesses implications to successful attacks and the loss of data to any...

2-sec Exhibiting at the PCI Europe Community Meeting

by Tim Holman | Sep 1, 2016 | Article, PCI DSS

Join 2-sec at the PCI Community Meeting in Edinburgh – 18-20 October What is PCI SSC? The Payment Card Industry (PCI) Security Standards Council is a global forum that develops, maintains and manages the PCI Security Standards, which include the Data...

Privacy Shield (ex. Safe Harbor), Here Come the Vultures!

by David Froud | Feb 17, 2016 | Article, Information Security & ISO 27001, PCI DSS

You can almost feel it happening, can’t you? Every time there is an introduction of, or a change to some regulation or another, the vultures of the legal, security consulting, and even security product vendors spin up their marketing machines to invent new promises on...

Is Microsoft Azure PCI DSS Compliant? Lessons in due diligence….

by Tim Holman | Jan 26, 2016 | Information Security & ISO 27001, PCI DSS

I’ve been busy assessing a Microsoft Azure environment as of late, for PCI DSS purposes. So. I go here to download their AoC: https://azure.microsoft.com/en-gb/support/trust-center/compliance/pci-dss/ The date of the AoC is December 31, 2014, and a number of...

PCI DSS v3.1 – how much protection does the new update give online?

by Sally Urwin | Apr 19, 2015 | Article, PCI DSS

According to the latest article from the SC Magazine in the UK, the latest PCI DSS version 3.1 release has “split the IT security profession” when it comes to deciding how much protection it is really providing the card holder who shops online. The...

Older Entries »