PCI DSS

Historically, meeting governance, risk and compliance (GRC) mandates was typically all about ensuring businesses had solutions in place to gain compliance, thus reducing the risk or consequences of non-compliance from the regulators (ie fines and penalties associated with failing compliance), observes Christopher Strand. Now, true…

ImmuniWeb, the dedicated provider of web, mobile and API security testing and risk ratings for end users, has recently implemented its new General Data Protection Regulation (GDPR) compliance check to test how the largest European websites adhere to the GDPR’s requirements related to web applications.…

Cyber security is an evolving discipline. It’s an ongoing endeavour to beat the hackers and cyber criminals at their own game and mitigate the risk they represent. As Scott Nicholson points out, though, for many organisations this is easier said than done. While the importance…

Cyber security is, of course, already high on the agenda for both risk professionals and C-Suite executives who have realised the financial cost, legal implications and reputational damage that can result from a serious data breach.  However, while most responsible organisations have taken on board…

KnowBe4, the provider of a recognised security awareness training and simulated phishing platform, has just released a new, updated SaaS-based GRC platform featuring compliance management, policy management and risk management functionality. Most organisations leverage spreadsheets, documents and/or collaboration portals, as well as e-mail threads and…

Fortinet, a specialist in the field of broad, integrated and automated cyber security solutions, has completed the acquisition of ZoneFox Limited, a privately-held cloud-based insider threat detection and response company headquartered in Edinburgh. The acquisition further enhances the Fortinet Security Fabric and strengthens Fortinet’s existing…

Attitudes towards security continue to harden, with terrorism, geopolitical uncertainty and cyber threats now joining over-regulation in the top four threats posed to business growth prospects in PwC’s 2018 CEO Survey. This shift is reflected by the language now used publicly – by Government and…

Lodge Service has launched Transpeye, a low-cost, cloud-based data mining system. The system enables retailers to identify avoidable losses in EPoS and other retail systems both quickly and easily, whether these result from fraud or non-compliance or as a result of staff failing to carry…

With cyber crime on the increase, payment card security is increasingly a focus for companies and consumers alike. The Payment Card Industry Data Security Standard (PCI DSS) is there to help businesses accepting card payments to protect their payment systems from breaches and theft of…

With the acceptance of mobile and other new forms of payment methods expected to double in the next two years, a new global study highlights a “critical need” for organisations to improve their payment data security practices on an urgent footing. The survey* of over 3,700 IT security…