Ways to Reduce the Costs of PCI Compliance

Many organisations treat PCI compliance as an expensive, stressful and time-consuming annual event.

Can infosec differentiate you from competitors

Application security is vital for minimising the risk of attacks crippling your organisation, but there’s a hidden benefit of exceptional application security that often gets less attention.

How to Identify Secure Software Vendors

You can invest all the time and money in the world ensuring that your internal systems are safe and secure, but with more and more third party vendors being used each year, it’s all for nothing if they’re not secure too.

What is The Difference Between Hashing and Encrypting

Hashing and encrypting are two words that are often used interchangeably, but incorrectly so. Do you understand the difference between the two, and the situations in which you should use one over the other? In today’s post I investigate the key differences between hashing and encrypting, and when each one is appropriate.

40 Blogs Every Software Developer Should Be Reading

Software developers always need to be upskilling, and increasingly are expected to bring more than just great code to an organisation. There’s hundreds of blogs software developers can read to learn, but it’s difficult knowing where to begin (or even what’s worth reading).

How to Train Secure Web Application Developers

To ensure that your development team understand the risks associated with web application development, and are armed with the tools to protect your organisation against them, you need to understand how to train secure web developers.

Why Large Organisations Keep Losing Data

It seems every week we hear about another large organisation that has lost confidential customer data.

Security Experts You Need to follow

As computers become exponentially more involved in our everyday working lives, security is an increasing concern.

What is Penetration Testing and Why is It Important

Penetration testing (otherwise known as pentesting) is the process of testing your applications for vulnerabilities, and answering a simple question."What could a hacker do to harm my application, or organisation, out in the real world?"

The importance of testing for application security

Why is testing for application security important? Can’t an organisation just respond to an incident if, or when it occurs? Whilst that viewpoint may sound mad to someone security conscious, it is unfortunately the approach that many organisations worldwide still take today.