Risk assessment – when to bet and when to fold
Being able to assess risk is a crucial part of life and very important when working with information security.
How to determine and reduce PCI DSS scope
The journey towards PCI compliance is not always straightforward. The PCI compliance process can be costly and requires a lot of resources
WHY YOU SHOULD CARE ABOUT APPLICATION SECURITY (2022)
Applications facilitate communication and help us in different ways, in our day-to-day lives. More on the blog
Notes and thoughts around the gentle art of assessing ATMs
As usual, preparation starts with defining how an ATM works in practice and what the critical components and interfaces are
PCI-DSS vs ISO 27001
The objective for both standards is to secure and manage company information, but they do so in different ways and to different extents.
Are you protecting your client data securely enough?
If you’re a small to medium sized business do you have to meet as many requirements and jump through as many hoops as a large enterprise?
PCI DSS Cloud Hosting
Outsourcing operations to a third party means that you share responsibility for reaching the requirements in PCI DSS. Read the our blog now.
Should you outsource?
You collect payment from your customers online and you know it’s your company’s responsibility to keep that information secure