URM’s blog offers key advice on what to expect from your SOC 2 audit in practice, the types of evidence you will need to provide, how best to prepare, and more.

Events

About Us

About URM

Overview

URM Core Values

Certifications

CSR

Testimonials

Partners

Our Partners

Become Partner

Subscribe to our mailing list

Tibor Laczko

Senior Consultant at URM

Tibor is a highly accomplished information security and compliance professional with deep expertise in Payment Card Industry Data Security Standard (PCI DSS) assessments and consultancy. He has been involved in payment security since 2001, working with the predecessors of PCI DSS before becoming a Qualified Security Assessor (QSA) in 2008. Tibor holds industry-leading certifications including CISA, CISM, CDPSE, and GIAC-GSEC. In his over 20 years of international experience, he has supported Fortune and Global 500 organisations across financial services, software, aviation, and petroleum. Since joining URM, Tibor has delivered hundreds of PCI DSS assessments and gap analyses, authored and reviewed hundreds of Reports on Compliance (RoCs), and advised on security governance and compliance strategies.

InfoSec Insider

Season

, Episode

Alastair Stewart &Tibor Laczko

The People Side of PCI DSS

In this episode of InfoSec Insider, Alastair Stewart and Tibor Laczko, both Senior Consultants and Qualified Security Assessors (QSAs) at URM, offer advice on compliance with the Payment Card Industry Data Security Standard (PCI DSS), with a particular focus on the ‘human’ element of security. Alastair and Tibor leverage nearly 30 years’ combined experience with the PCI DSS to discuss:

How you can minimise the risk of noncompliance caused by human error or behaviour
The compliance complications associated with using wireless devices such as Bluetooth headphones
Whether ‘pause-and-resume’ recording in call centres is truly secure
How to avoid card data leaking through CCTV cameras in environments such as call centres
And more!

Learn more about this topic