Laura Downes Archive

PCI DSS compliance demonstrates security for your customers, stakeholders and brand

Meeting the PCI DSS (Payment Card Industry Data Security Standard) requirements involves drafting detailed data protection policies and documentation to ensure security for your customers, stakeholders and your brand. From policy to procedure to configuration standard, a significant proportion of …

How certified ISO 27001 training can help protect your organisation

Acquire industry-leading qualifications and practical skills to implement and audit an ISO 27001 information security management system (ISMS). Our team led the world’s first ISO 27001 certification project and we’ve helped more than 7,000 professionals with ISO 27001 training on …

Upcoming free EU GDPR (General Data Protection Regulation) webinars

The GDPR has significantly reshaped the data protection landscape for organisations worldwide that collect and process EU residents’ personal data. The Regulation imposes fines of up to 4% of annual global turnover or €20 million (whichever is higher) for non-compliance, grants extended …

Facebook facing investigation and fine of up to $1.6 billion over data breach

On Tuesday, 25 September, Facebook discovered a major data breach that gave criminal hackers the ability to take over user accounts.   50 million Facebook users worldwide may be impacted by the breach, including about 5 million European accounts.  The Irish …

PCI DSS: The importance of penetration testing

Often, organisations rely on vulnerability scans to identify their weaknesses. They are told that vulnerability scanning is as good as penetration testing and that it will be enough to meet the compliance requirements of the PCI DSS (Payment Card Industry …

Facebook data breach: what you need to know

On the afternoon of Friday, 28 September, Facebook announced that 50 million Facebook accounts had been breached.   What happened?  Facebook’s Vice President of Product Management, Guy Rosen, announced that the security breach affected 50 million users.   It is believed the …

How ISO 27001 can help protect your organisation

Accredited certification to ISO/IEC 27001:2013 demonstrates to existing and potential customers that your organisation has defined and put in place best-practice information security processes. ISO 27001 is the only auditable international standard that defines the requirements of an ISMS (information …