NSEC was the first mechanism introduced by DNSSEC to prove the non-existence of a domain name. It works by linking records in ...

To become a CE+ assessor, I had to take the Vulnerability Assessment Plus (VA+) exam, which is split into two parts: a practical element and a multiple-choice section. The exam requires a solid ...

Determine your role: Merchant or service provider Determine your level and requirements Identify your validation method: SAQ or RoC Use the PCI website The Payment Card Industry Data Security Standard ...

The aviation industry realised some time ago that taking a standard approach to the cyber security of its products was needed and that this was a specialist discipline. A family of documents was ...

Poorly protected authentication requests from privileged automated tasks (e.g. vulnerability scanners, health checks) could be intercepted by rogue authentication servers planted in the internal ...

Requirements include the appointment of a Cybersecurity Officer (CySO) who will be in charge of compliance. The development of a Cybersecurity Plan and an Incident Response Plan and it’s important ...

PCI DSS is complex and challenging Review the 12 top level controls Arm yourself with this checklist to help you navigate it PCI DSS v4.0 is challenging for a number of reasons: increased complexity, ...

The Pen Test Partners Security Blog brings you the latest news and trends in penetration testing and the internet security industry. More about our security blog » Pen Test Partners delivers ground ...

Onsite ICS testing is risk averse Laboratory ICS device testing uncovers more A blended approach is key How that works Demonstrable benefits For safety’s sake onsite ICS testing adopts a risk averse ...

We’re only as good as the people in our team, so we’re always looking for great people. Maybe that’s you? PTP is acutely aware of the lack of diversity in our industry, and are keen to address that.