Opt-Sec was formed with a clear objective:-
The Frameworks for Best Practices in information Security have already been comprehensively laid out in a number of Policies. These policies have been introduced by various organisations (ISO, PCI etc) with the aim of standardising terminology, definitions and minimum requirements. They are far from easy to understand however, and tend to be overly complicated, riddled with jargon and very confusing.
To compound matters, many vendors have jumped on the bandwagon and will go to great pains to point out how their products will “make you compliant”. This is usually because the use of their product will probably contribute towards the satisfaction of one or more of the requirements of one of the major Policies, but it is hardly ever because the product does everything that needs to be done to satisfy any Policy completely.
We thought there was a growing need for a Team who could explain which products can help and in which ways – using products to help satisfy compliance instead of using compliance to help sell products!
We thought there was also a clear need for simple to use systems that can help those tasked with making their organisations compliant to understand their chosen compliance Policy, manage the compliance Processes and implement the right technologies – through to Certification and beyond!
We can’t make you compliant – only you can do that – but we can optimise your efforts to secure your information, become compliant and stay compliant, in the minimum time and with the minimum effort and cost.
Please feel free to explore the pages of this website to learn more and, when you’re ready, we look forward to working with you.
Attackers continue to compromise valid credentials to access company networks and steal data. To help organizations combat this growing threat, the PCI Security Standards Council (PCI SSC) has issued guidance on the proper use of multi-factor authentication for preventing unauthorized access to computers and systems that process payment transactions.
The PCI Security Standards Council (PCI SSC) and Beijing Unionpay Card Technology Co. (BCTC) announced today that BCTC is now a PCI recognized laboratory approved to conduct security evaluations of payment acceptance devices.