Why an Internal Penetration Test Delivers Results

Why an Internal Penetration Test Delivers Results The CISO of a large  organisation with multiple regional offices approached Dionach requesting an internal penetration test. The organisation used a hybrid IT infrastructure with systems located across two data centres...

The difference between Penetration Testing and Red Teaming engagements

Finding the right security service to assess your organisation is a critical aspect of any security program. Each security service has its benefits and fits a specific purpose, and it is important to therefore understand the differences between these services to...

Dionach join the CAA Assure Scheme

ARTICLES & INSIGHTS Dionach join the CAA  Assure Scheme – Extending our services In the Aerospace  sector   05/09 – 09/09 Oxford, United Kingdom: Dionach are pleased to announce we are now one of a select number of organisations accredited with the Civil...

PCI DSS 4: eCommerce Changes for SAQ A Explained

The recent PCI DSS v4.0 has some important changes for eCommerce merchants that use a redirect or iframe to reduce scope to Self-Assessment Questionnaire A (SAQ A). Even though the merchant’s website that meets the criteria for SAQ A does not transmit account data,...

ISO 27002:2022 Update – New Annex Controls Explained (Part 1 of 2)

Part 1 of 2  Authors: Shannon-Louise Huxley – GRC Consultant, Steve Rowe – GRC Consultant The release of the ISO 27002:2022 update brings a restructure of the standard and several new controls. This post aims to provide a breakdown of these new elements and how best...