Blogs Archives - Page 11 of 13 - URM
  • How should you approach supply chain risk management?

    Supply Chain Risk Management In our blog on risk management challenges for 2019, we referred to the perennial risk attached to suppliers, as third parties continue to be a major source of incidents.  Linked to the Brexit issue, understanding the risks your suppliers face and the measures they are taking to mitigate those risks is […]

  • Magento attacks – most recent and historic

    Magento Attacks One trend we are seeing in the market at present is an increase in the use of JavaScript Sniffers (JS Sniffers).  In short, these sniffers are a type of malicious code which is injected/placed into a website with the sole intention of stealing personal data, names, credentials etc. from customers using that website.  […]

  • Risk Management Challenges in 2019

    Risk Management Challenges in 2019 There has been a lot said and written about the risks businesses are expected to face in 2019, but less about challenges of risk management and the process itself.  Here are our thoughts on what we see as the key challenges : Legislation/regulation and the impact on your risk tolerance– […]

  • Introducing Abriska – What is it and why adopt it?

    Introducing Abriska What is Abriska? Abriska is a web-based tool (think software as a service) with a number of modules all focused on helping organisations implement a best practice approach to managing risk. The first module we developed addressed information security risk and was followed with others looking at business continuity, supplier risk, operational risk, […]

  • ISO 27001 | Information Security Management | URM Consulting, iso 27001, what is iso 27001, iso certification, iso data, iso standards, blog, urm consulting cervices, urm services, urm training, urm iso 27001 seminars, services, consultancy, iso standards, iso 27001, urm consulting services, urm, implementing iso 27001, services, consultancy, iso standards, iso 27001, urm consulting services, urm, implementing iso 27001

    ISO 27001 – What is it and why should you implement it?

    ISO 27001 – The International Information Security Standard It is the International Standard for Information Security Management. Effectively, it provides any organisation, irrespective of size or sector, with a framework and an approach to protecting one of the most important assets, i.e. information. ISO 27001 is one of the most adopted international standards and one of the […]

  • How can URM help you to achieve PCI compliance and what is our approach?

    How can URM help you to achieve PCI compliance and what is our approach? In our previous blog, we looked at where your PCI compliance journey starts.  The first step is understanding the flow of your payment card data – by that we mean where payment card information comes into your organisation, where it goes, […]

  • PCI DSS - The Payment Card Data Security Standard - What is it?, services, consultancy, payment, payment card data security standard, card data, pci compliance, compliance, urm pci blog, pci dss, qsa, qsa support,

    PCI DSS – The Payment Card Data Security Standard – What is it?

    PCI DSS – The Payment Card Data Security Standard – What is it? So, let’s take a step back and define what is the Payment Card Industry Data Security is. Often referred to as PCI DSS or quite simply PCI, the Standard was developed by the founding payment brands of the PCI Security Standards Council (SSC), […]

  • PCI SSC Add New Requirement to SAQ A with Release of PCI DSS v3.2.1

    The Payment Card Industry Security Standard Council (PCI SSC) has followed up the release of the PCI DSS v3.2.1 Standard on 17 May 2018 with updates to the supporting documents such as the self-assessment questionnaires (SAQ). Whilst the overall purpose of v3.2.1 was to provide ‘clarifications’ and not to introduce any new requirements to the […]