dcsimg

3 challenges when securing ISO 27001 approval from the board

So you’ve decided that it’s in your organisation’s best interest to adopt ISO 27001, the international standard for information security. Good decision. Now you just need to convince the board to give you the financial backing and resources to implement the Standard.  That’s not as hard it once was, given how highly publicised data breaches now are. But you might still struggle to persuade senior … [Read more...]

What do SMEs need to do to comply with the PCI DSS?

Organisations that accept card payments are responsible for the security of customers’ payment information and must comply with the PCI DSS (Payment Card Industry Data Security Standard). The PCI DSS is a set of tools and measures to help you protect payment card data. It applies to all organisations that transmit, process or store such information, but SMEs (small and medium-sized organisations) … [Read more...]

3 essential controls that can keep your organisation safe from cyber threats

Organisations that want a proven, structured approach to information security should look no further than ISO 27001. The Standard describes best practice for implementing and maintaining an ISMS (information security management system), which is built around a system of controls that protects your information from a wide variety of threats. The full list of controls is listed in Annex A of … [Read more...]