Archive

Cyber security is a topic on every organisation’s radar. The continued threat of ever evolving cyber-attacks, combined with the introduction of GDPR compliance means that there are serious businesses implications to successful attacks and the loss of data to any company. It is not the case of if you are going to be attacked, but […]

Home | PCI DSS

How do I make sure my business is cyber protected?

by Sally Morgan | Jul 5, 2018 | Article, Assure, Cyber Essentials, Detect, Information Security & ISO 27001, Managing Risk, NIST, PCI DSS, Prepare, Protect

2-sec Exhibiting at the PCI Europe Community Meeting

by Tim Holman | Sep 1, 2016 | Article, PCI DSS

Join 2-sec at the PCI Community Meeting in Edinburgh – 18-20 October What is PCI SSC? The Payment Card Industry (PCI) Security Standards Council is a global forum that develops, maintains and manages the PCI Security Standards, which include the Data...

Privacy Shield (ex. Safe Harbor), Here Come the Vultures!

by David Froud | Feb 17, 2016 | Article, Information Security & ISO 27001, PCI DSS

You can almost feel it happening, can’t you? Every time there is an introduction of, or a change to some regulation or another, the vultures of the legal, security consulting, and even security product vendors spin up their marketing machines to invent new promises on...

Is Microsoft Azure PCI DSS Compliant? Lessons in due diligence….

by Tim Holman | Jan 26, 2016 | Information Security & ISO 27001, PCI DSS

I’ve been busy assessing a Microsoft Azure environment as of late, for PCI DSS purposes. So. I go here to download their AoC: https://azure.microsoft.com/en-gb/support/trust-center/compliance/pci-dss/ The date of the AoC is December 31, 2014, and a number of...

PCI DSS v3.1 – how much protection does the new update give online?

by Sally Urwin | Apr 19, 2015 | Article, PCI DSS

According to the latest article from the SC Magazine in the UK, the latest PCI DSS version 3.1 release has “split the IT security profession” when it comes to deciding how much protection it is really providing the card holder who shops online. The...

Debate on the New Guidance from PCI Council – does it go far enough?

by Sally Urwin | Apr 1, 2015 | Article, PCI DSS

The PCI Security Standards Council has released brand new guidance to advise businesses how they should use penetration testing to identify network vulnerabilities that could be exploited for malicious activity. However, a recent article has been published online by...

Older Entries »