Information Security, SSAE 16, ISO 27001, CISA, Cert-IN
Last week, Visa announced a new Payment Card Industry Data Security Standard (PCI DSS) compliance program that will fuel dynamic data authentication.
This will mean that merchants will not need to validate their compliance with the Payment Card Industry Data Security Standard (PCI DSS) if at least 75% of the merchant’s annual Visa card transactions originate on smartcard-enabled terminals.
Continue reading “PCI DSS Compliance Program undergoes a change”
When we discuss about Information Security Standards under ISO, the first thing that comes to mind is ISO 27001 – which is the specification for an Information Security Management System.
However, apart from ISO 27001 (which is a standard under which certificate can be obtained), there are many other initiatives under ISO standards covering IT Security – some are published standards, while some are work in progress.
Here is a brief listing of some such standards:
Continue reading “Information Security Standards under ISO”
Currently a trial is going on in British courts against a former customer business manager of the Handsworth branch of Barclays Bank.
Parminder Bhachu, 42, from Birmingham, is accused of authorising the transfer of £480,000 from the bank account of Londoner Barbara Siembida in February last year.
According to the latest edition of the Kroll Annual Global Fraud Report, theft of information and electronic data at global companies has overtaken physical theft of property and goods for the first time.
Continue reading “Theft of information and electronic data overtakes physical theft”
Wi-Fi Direct makes it happen!!
Wi-Fi Direct, formerly known as Wi-Fi Peer-to-Peer, is a set of software protocols that allow Wi-Fi devices to talk to each other without the need for wireless access points (hot spots).
In my previous article, I had covered some tips on shock-proofing ourselves against the loss of our mobile phones. In this article, we shall look at some tips to ensure that when the hard-drive of your laptop / PC crashes, the loss is only of a computing resource and not of your data.
How badly would your daily activities be impacted if you lose your mobile phone? If you lost your mobile phone now, would you remember the telephone number of your spouse / relatives or friends to call them without your mobile phone? Would you be able to reconstruct all your contact numbers onto your new phone without tearing your hair? If you answer yes, welcome to the club of Minorities !! If you answer no, read on ….
Continue reading “Shock-Proof yourself against loss of your mobile phone”
A good log management tool can be very effective in managing and ensuring security in an enterprise. However, the right tool can quickly become the wrong tool unless the organisation puts in the time and effort required to make the tool effective.
Here are a few best practices to ensure a successful implementation of a log management tool:
In a Windows XP workgroup environment there might be a need to password protect or restrict access to specific folders. Here is a tip on how to achieve this.
Continue reading “Password protect folders in Windows XP Workgroup environment”
Unified Threat Management (UTM) is a comprehensive solution that has gained widespread currency as a primary network gateway defense solution for organizations.