Uncategorized Archives - URM
  • ISO 27001 Annex A Controls – A Definitive Guide

    What are the Primary Objectives of the Controls Detailed in Annex A of ISO 27001?   ISO 27001 Controls    Annex A of  ISO 27001 comprises  114 controls which are grouped into the following 14 control categories:     Information Security Policies   Organisation of Information Security   Human Resources Security   Asset Management   Access Control   Cryptography   Physical and Environmental Security   Operational Security   Communications Security   System Acquisition, Development and […]

  • ISO 27001 essentials, cyber security iso 27001, cyber security essentials, cyber security essentials, cyber essentials scheme

    Cyber Essentials Scheme and ISO 27001

    Information Security – Where do You Start? According to the Beaming Q1 2021 Cyber Threat Report, the first quarter of 2021 saw an 11% rise in cyberattacks on British businesses. With the UK government aiming to make the UK the safest place to be online, (Policy Paper 21 April 2021), the next piece of primary […]

  • pci requirements, pci dss, pci requirements list, pci dss requirements, pci compliance, pci requirements, dss, pci

    PCI DSS – The 12 Compliance Requirements

    The 12 Requirements of the PCI DSS Following on from our ‘Introduction to PCI DSS’, we are now going to focus on the 12 technical and operational requirements along with the 6 control objectives, which all organisations processing payment cardholder data must comply with. For each requirement, we will explain what the purpose is and […]

  • pci, compliance, dss, Self assessment, pci compliance, what is pci, aoc, pcidss, pci-dss, pci compliance, compliant meaning, what is pci, compliance, pci dss compliance

    PCI DSS Compliance Guide

    What is the PCI DSS? PCI DSS stands for the Payment Card Industry Data Security Standard and is an information security standard that was developed by an industry body of card brands, including Visa and MasterCard. The PCI DSS is a set of controls that must be applied to security policies, technologies, and ongoing processes […]

  • Cyber Essentials - The 5 Key Controls, malware protection, firewalls, patch management, cyber access, cyber control ,essential controls, cyber security essentials, network security essentials

    Cyber Essentials Scheme – The 5 Key Controls

    Cyber Essentials Scheme The 5 Key Controls So How Do I Combat the Threat of Cyber Attacks? As part of the UK Government’s National Cyber Security Strategy, the experts at the National Cyber Security Centre have identified the 5 key areas that every organisation should focus on to help protect them from the most common […]

  • Information Risk Management Training | PCIRM FAQs, what is risk, types of risk, risk management questionnaire, risk management help, about risk management, information security risk management, it risk management, benefits of risk management

    Information Risk Management Training – PCIRM FAQs

    PCIRM is a BCS qualification which stands for Practitioner Certificate in Information Risk Management. It is a practitioner-level qualification which demonstrates that you have a hands-on level of understanding of information risk management. PCIRM is aimed at anyone who is involved in information security that needs to understand and implement information risk management processes. The […]

  • Frequently asked questions about the GDPR and data protection

    The General Data Protection Regulation (GDPR) defines personal data as “any information which are related to an identified or identifiable natural person.” By using the term ‘any type of information’, it can be determined that the intention of the GDPR is to be as broad as possible. Identifiers can be a name, an identification number […]

  • CISMP – 13 Frequent Questions Answered

    The Certificate in Information Security Management Principles (CISMP) course is designed to provide the foundation of knowledge necessary for individuals who have information security responsibilities as part of their day to day role, or who are thinking of moving into an information security or related function. The certificate, which can be gained at the end […]

  • Infosec & Cybersecurity - Free Awareness and Downloadable Resources ,URM – Downloadable Awareness Resources, downloads, free resources, information security awareness, data protection awareness, PCI DSS awareness, Business Continuity awareness, phishing attack, phishing attacks awareness, staff awareness, urm free downloads, urm awareness programme

    Infosec & Cybersecurity – Free Awareness and Downloadable Resources

    URM is the industry-leading supplier of cyber security, compliance and IT governance solutions for organisations of all sizes. Our experience and product range can help our customers deliver their projects on time, on budget and to the highest possible standard. URM is highly experienced in assisting organisations comply, or certify, with the ISO 27001 and ISO 22301 Standards (having assisted […]