2|SEC Cyber Security Blog

The Cyber Sentinel

Stay on top of the latest news and updates to stay ahead of the latest threats

2-sec and ControlScan announce Incident Response Plan Toolkit SIG

ControlScan, Inc. and 2-sec, Ltd. to Present “Incident Response Plan Toolkit” SIG Proposal at North American, European Payment Card Industry Community Meetings PCI Special Interest Group would improve merchants’ risk preparedness, incident handling                                                                                    ATLANTA and LONDON, Sept. 12, 2013 – Payment security and compliance solution provider ControlScan, Inc., and  security testing, QSA, PA-QSA […]

2-sec and ControlScan announce Incident Response Plan Toolkit SIG Read More »

PCI DSS 3.0 Draft Changes

The PCI SSC announced draft changes for PCI DSS v3.0 and PA-DSS v3.0 this week. Whilst for most QSAs this shouldn’t come as a surprise, what the standard will do is offer improved guidance for those whom are self assessing, to help ensure the intent of the standard is better understood by the merchant community.

PCI DSS 3.0 Draft Changes Read More »

CCTV Monitoring

We’ve been doing a few data centre audits as of late, and most entities seem to think just because they have CCTV at their co-location data centres, they meet the compliance requirements of PCI DSS. You’ll note from wording that access control systems need to be MONITORED.  If you’ve a data centre with a few

CCTV Monitoring Read More »

ISSA-UK Dragon’s Den Event, HMS President – Thursday July 11th 2013

ISSA-UK Dragon’s Den Testing Times: Managing Vulnerabilities in Complex Systems HMS President, River Thames, London, United Kingdom Thursday 11th July, 2013 (5 CPEs) Register Here This year’s Dragon’s Den event will be looking at ways to help bring the gap between emerging vulnerabilities/threats and the ever increasing complexity of systems, both of which are taking an

ISSA-UK Dragon’s Den Event, HMS President – Thursday July 11th 2013 Read More »

PCI DSS vs Operating Regulations

I came across an interesting interpretation of PCI DSS recently, whereby a Merchant thought that just because they had been assessed compliant against PCI DSS, then all assessed payment channels also met the security requirements of Visa Operating Regulations. SAQ-C-VT (Virtual Terminal) is a standard that can be used to assess card-not-present and card-present transactions

PCI DSS vs Operating Regulations Read More »

The Big Debate: Are you making the right decisions to secure your code?

Our CEO and ISSA-UK President Tim Holman will be speaking at Coverity’s Big Debate in London on Wednesday 3rd July. Event Location: The Brewery, 52 Chiswell Street, London EC1Y 4SD Date / Time: Wednesday 3rd July 18.30 – 22.00. Drinks and canapés from 18.30, with debate taking place around 20.00 Details: Security breaches make headline news and

The Big Debate: Are you making the right decisions to secure your code? Read More »

May 2013 Newsletter

Shorts are on, sandals brushed down and summer is here! Unfortunately for us QSAs, someone had a bright idea of issuing a June deadline for both Level 1 and Level 2 Merchant PCI DSS Compliance and summer tends to be the busiest time of the year for us. We are also busy making suggestions and improvements

May 2013 Newsletter Read More »

Scroll to Top