The Security Knowledge Centre and Blog

August 1, 2025

This blog breaks down the key differences between PCI-DSS 3.2.1 and 4.0, highlighting major updates in authentication, encryption, secure development, and compliance timelines—all designed to address today’s evolving cyber threats.

August 6, 2025

ISO 27001 & Risk Management Risk management is central to ISO 27001, influencing both requirements and Annex A controls. This blog outlines how to align risk assessments, treatment plans, and control decisions to meet compliance and strengthen your ISMS.

August 1, 2025

Remote Work & Endpoint Security: Key Risks and How to Stay Protected As remote work becomes the norm, securing personal and work devices is critical. This blog highlights the top risks—like phishing, weak passwords, unpatched software, and unsecured networks—and offers practical steps for individuals and organisations to strengthen endpoint security and safeguard data in a remote environment.

August 1, 2025

Remote work increases the risk of data leakage, especially when employees use personal devices or unsecured networks. This blog outlines practical data loss prevention strategies—like encryption, access controls, endpoint security, and employee training—to help safeguard sensitive information and maintain trust.

February 15, 2026

Strong passwords and Multi-Factor Authentication are still your best defence against cyber threats. This blog explores what makes a secure password, why reuse is risky, and how password managers like LastPass can help protect your accounts. Connect with Kris to learn more.

February 11, 2026

ISO 27001 is more than a compliance exercise—it’s a powerful framework for building real security, reducing risk, and earning client trust. This blog explores how ISO 27001 drives long-term value by helping your organisation stay secure, resilient, and competitive in a fast-changing threat landscape.