Blog

The latest news and developments

Explore a blend of security news, industry developments, and in-depth technical analysis of our services on Secora Consulting's blog. Bookmark this page to stay informed.

Latest Blogs and News

Secora Consulting’s blog is a mixture of news and developments in the security world and technical breakdowns of our services. Bookmark this page to stay informed.

GRC

ISO 27001 - 7 reasons why organisations are certifying to the standard

ISO 27001 (ISO/IEC 27001:2017) is an internationally recognised and widely adopted standard which outlines best practices and requirements for an organisation’s Information Security Management System (ISMS). The ISMS is designed to preserve the confidentiality, integrity and availability of information by applying a risk management process with the aim of assisting organisations in keeping their information secure. In other words, the standard assists in helping organisations protect their sensitive information including customer information, financial data and intellectual property from unauthorised access.

Testing

Going Mobile: The importance of Mobile Application Testing

Managing attack surfaces is no easy task - you can’t protect what you don’t know you have. Many businesses have their own stories of a pseudo-mythological Windows XP box that sits in the corner and makes everything run. But one of the areas that often escapes testing is our mobile apps. With more and more businesses bringing their services on the go, we take a look at why mobile application testing is important, and what Secora commonly identifies when testing.

Testing

External and Internal Testing: Whats the Difference

Securing your organisation using policies and technical controls is critical; however, unless these controls and policies are regularly tested, an organisation cannot determine or monitor their effectiveness. It seems as though every week there is a new cyber attack reported that may affect just one organisation or multiple organisations simultaneously. The importance of penetration testing Building strong security controls and processes is essential to building effective defences. By engaging in Penetration testing , you can test and improve the controls and processes you already have in place to help build an effective and strong defence-in-depth cybersecurity posture.

GRC

Increase Your Credit Unions Cybersecurity Posture With Secora Consulting

Secora Consulting are delighted to be exhibiting at this year’s CUMA Spring Conference and AGM 2023. The event titled Change 2023, will run from the 29th to the 30th of March in the Galway Bay Hotel, Galway. We welcome you to visit our team at Stand 56 to learn more about our services and how we can help you align with the Central Bank’s IT security expectations. In advance of the conference, we have put together our most popular services used by Credit Unions throughout Ireland.

PCI DSS

The Importance of Penetration Testing for PCI Compliance

Back in 2020, Secora Consulting released a blog post titled “The Importance of Penetration Testing for PCI DSS Compliance ”. We decided recently that given the release of the new PCI DSS v4.0 that there was a good opportunity to give the guidance a refresh and discuss what has changed (and provide guidance on some areas that we often get queries from our customers). A summary of what is different in PCI DSS v4.