ISM’s blog discusses the Practitioner’s Certificate in Information Risk Management (PCIRM), who it’s for, what you can learn, how to prepare, and more.
URM’s blog explains everything you need to know about the Certificate in Information Security Principles (CISMP) and how it can help you.
Improving your organisation’s information security with an ISO 27001 certification is not just useful for helping you maintain compliance to legislation like the General Data Protection Regulation (GDPR) or compulsory standards such as the Payment Card Industry Data Security Standard (PCI DSS).
ISO 27001 is the International Standard for Information Security Management, providing organisations of all sizes and in any sector with a framework and approach for protecting information. It is one of the most widely adopted ISO standards, as well as …
The Payment Card Industry Data Security Standard (PCI DSS), sometimes shortened to PCI, is an international security standard comprised of a set of controls. These controls must be applied to technologies, security policies, and ongoing processes to protect payment systems …
Broadly speaking, internal auditing is an evaluation of an organisation’s internal controls for the purpose of checking compliance with legislation, regulations and standards. In this blog, however, we will be specifically looking at internal auditing as it pertains to ISO …
Maintaining information security is of vital importance for any organisation, particularly those that handle personal or sensitive data. Data breaches can have a huge, negative impact on the reputation of an organisation, and, if an organisation is found to be …
Under the Payment Card Industry Data Security Standard (PCI DSS), merchants and service providers are subject to different requirements and have different responsibilities. While merchants will usually know they are merchants, having come to a merchant agreement with a payment …