dcsimg

IT Governance Europe announces new PCI DSS training courses

The PCI DSS (Payment Card Industry Data Security Standard) is administered by the PCI SSC (Security Standards Council) to help prevent payment card fraud and strengthen payment card data security. All organisations that accept, store, transmit or process cardholder data must comply.   When implemented correctly, the PCI DSS helps organisations secure … [Read more...]

The 4 stages of cyber resilience

The cyber threat landscape has evolved rapidly in the past few years. Organisations are increasingly reliant on technology and more eager than ever to collect personal data, but without the resources to protect their systems, cyber crime has flourished. We’ve reached a point where there are so many crooks and potential vulnerabilities that it’s foolish to suggest that you can prevent breaches … [Read more...]

Have you met the PCI SSC’s new QSA requirements?

As of 2019, the qualification requirements for QSAs (Qualified Security Assessors) have become much tougher. Assessors must now gain an information security and an IT audit certificate. Under the previous rules, QSAs were only required to hold one of those qualifications. The rule change took effect on 1 January 2019 for new QSAs. Those who were already qualified have until 1 July 2019 to gain … [Read more...]

3 fundamental IT issues and how you can resolve them

Every organisation has its own unique challenges, but some issues are so fundamental to business operations that they are practically universal. This blog outlines three common problems, and offers a solution for understanding and tackling them. 1. Staff awareness According to Leron Zinatullin, author of The Psychology of Information Security, one of the biggest problems … [Read more...]

No organisation is immune to cyber attacks

Hackers are becoming more skilled and sophisticated, and this is leaving Irish business owners and their systems extremely vulnerable and unable to protect themselves against cyber security threats. One of the most common tools a company can use to defend themselves against hackers is a penetration test. During a penetration test, an ethical hacker utilises the same techniques as a criminal hacker … [Read more...]

PCI DSS compliance demonstrates security for your customers, stakeholders and brand

Meeting the PCI DSS (Payment Card Industry Data Security Standard) requirements involves drafting detailed data protection policies and documentation to ensure security for your customers, stakeholders and your brand. From policy to procedure to configuration standard, a significant proportion of PCI DSS compliance begins with documentation. Nearly one in five data breaches caused by human … [Read more...]

PCI DSS: The importance of penetration testing

Often, organisations rely on vulnerability scans to identify their weaknesses. They are told that vulnerability scanning is as good as penetration testing and that it will be enough to meet the compliance requirements of the PCI DSS (Payment Card Industry Data Security Standard).  However, scanning and testing perform two different jobs, and the PCI DSS mandates that you conduct both on a regular … [Read more...]

Get #BreachReady before you get burnt!

Just because everyone else is on holiday, doesn’t mean cyber attackers are. Protect yourself from the financial penalties and losses associated with data breaches with our fixed-price, tailored services. What’s more, when reporting the breach you’ll need to explain how it could have been avoided – a sticky situation you won’t relish. You can’t prevent a cyber attack from the beach, so get ready … [Read more...]

The top cyber security trends of 2018 so far

There have been more than 600 data breaches this year, so people who want to pick out the most serious incidents have plenty to choose from. It’s not simply a case of finding the breaches involving the highest number of stolen records, because a breach compromising names and email addresses isn’t the same as a breach compromising payment card information. Besides, infrastructural damage and … [Read more...]

How to achieve and maintain PCI DSS compliance

All organisations that accept card payments must comply with the PCI DSS (Payment Card Industry Data Security Standard). This is not a simple task, and if you make mistakes when implementing the Standard, you’ll struggle to achieve compliance and expose yourself to data breaches and regulatory fines. We understand that PCI DSS compliance is difficult, so we’ve laid out some recommendations based … [Read more...]