Blog
Recent blogs
How Organisations Fall Into PCI DSS Scope Without Realising It
Published on
26
June
2026
TRENDING
URM’s blog explains how organisations can unintentionally and without realising fall into scope of the PCI DSS, despite not directly handling card data.
Read more
Other Standards
Published on
16/8/2024
The EU Artificial Intelligence ActTRENDING
URM’s blog breaks down the EU AI Act and discusses its scope, requirements, how it will be enforced, how it may impact the UK & the rest of the world, and more.
Information Security
Published on
8/8/2024
How to Conduct Effective Supplier Information Security Risk ManagementTRENDING
URM’s blog provides a stage-by-stage breakdown of the key steps you will need to take to conduct effective supplier information security risk management.
Cyber Security
Published on
1/8/2024
10 Most Common Vulnerabilities Found in Pen TestsTRENDING
URM’s blog outlines the top 10 most common vulnerabilities we identify when conducting pen tests, the associated risks, and how they can be fixed/avoided.
Quality Standards
Published on
25/7/2024
5 Golden Rules for Implementing ISO 9001TRENDING
URM’s blog offers advice and guidance on how to implement and maintain an ISO 9001-aligned QMS and receive the maximum benefit from your investment.
Data Protection
Published on
18/7/2024
ICO Enforcement Action January – June 2024TRENDING
URM’s blog reviews ICO enforcement activities for the 1st half of 2024, highlighting trends & shifts in how it enforces against data protection breaches.
Cyber Security
Published on
12/7/2024
Access Control, Administrative Accounts and Password-Based Authentication in the Cyber Essentials SAQTRENDING
URM’s blog offers advice on answering questions in the Cyber Essentials SAQ which relate to access control, admin accounts and authentication methods.
Information Security
Published on
10/7/2024
A Guide to the Certificate in Information Security Management Principles (CISMP)TRENDING
URM’s blog discusses everything you need to know about the CISMP, including its benefits, who it’s suited to, the topics the CISMP covers, and more.
Data Protection
Published on
5/7/2024
Oral references now count as processing for GDPR purposes (in the EU at least)TRENDING
URM’s blog explores a recent ECJ ruling which dictates that oral job references are covered by the GDPR
Cyber Security
Published on
27/6/2024
Getting the Most from Your Pen Tests - During and AfterwardsTRENDING
URM’s blog outlines the key steps you can take during and after a penetration test to improve your organisation’s security posture.
Other Standards
Published on
5/6/2024
ISO 42001 Artificial Intelligence Impact Assessments (AIIAs)TRENDING
URM’s blog explores artificial intelligence impact assessments (AIIAs) and offers advice on how to conduct these assessments in full conformance with ISO 42001.
URM’s consultants have assisted over 450 organisations achieve and maintain certification to ISO 27001.
Find out more
how URM CAN HELP?
URM CONSULTING services
Receive a Bespoke AI Management System
URM tailors ISO 42001 solutions to your unique risks, sector, and culture—ensuring seamless integration into business-as-usual.
Read more
URM CONSULTING services
Are you looking to implement ISO 27001? Or certify against the Standard?
URM offers a host of consultancy services to assist you implement and maintain ISO 27001, including gap analyses, risk assessments, policy development, auditing and training.
Read more
URM CONSULTING services
Unsure how PCI DSS applies to your environment?
You do not need a fully scoped programme to speak with us. We offer a free call to help you understand your PCI DSS obligations, clarify scope, and identify practical next steps. Early insight can significantly reduce complexity and cost
Read more
"
Thank you to our assessor, our account manager and URM for this support. Without their advice and support, we wouldn’t have achieved this.
contact US
Let us help you
Let us help you in your compliance journey by completing the form and letting us know how we can best support you.