PCI DSS Archives - Alan Calder on IT Governance, Cyber Resilience, ISO 27001 and Brexit

How do customers know which suppliers are compliant with the PCI DSS? And shouldn’t they be told?

Alan Calder August 7, 2008 Data Breaches, Data Protection, IT Security, PCI DSS

Lots of organisations think they don’t need to worry about theft of credit card data. I don’t know why. Payment card data theft is now big business – the level of professionalism available in this industry includes the development of …

[Continue Reading...]

The ICO needs to act

Alan Calder January 22, 2008 Compliance, Data Protection, IT Security, PCI DSS

The private sector needs to take data privacy more seriously if it is to stop the Information Commissioner’s Office getting the power to audit their information security systems without warning. According to ComputerWeekly, this is the warning from James Alexander, …

[Continue Reading...]

BS25999 and ISO27001

Alan Calder October 16, 2007 ISO 20000, ISO 25999, ISO 27001, IT Security, PCI DSS

Once upon a time, there was only BS7799 for information security – now there are three parts to it, two of which have become internationalised (ISO27001) and are part of a series which has something like 20 numbers reserved for …

[Continue Reading...]

House of Lords E-Crime Report

Alan Calder August 23, 2007 Compliance, Data Protection, IT Security, PCI DSS

The recent report from the House of Lords Science and Technology select committee into ‘Personal internet security’ highlights the fact that businesses are not doing enough to protect their customers from the dangers of e-crime and on-line fraud. Clearly this …

[Continue Reading...]