Blog
Recent blogs
Continuous Compliance With the PCI DSS
Published on
23
March
2026
TRENDING
URM’s blog outlines how continuous compliance fits into PCI DSS, and explores practical ways to integrate requirements into business-as-usual (BAU) operations.
Read more
Information Security
Published on
3/6/2024
PCI DSS v4.0: Forced Password Changes and Zero Trust ArchitectureTRENDING
URM’s blog drills down into the PCI DSS v4.0 requirements around forced password changes, with a particular focus on the addition of zero-trust architecture.
Cyber Security
Published on
31/5/2024
How to Get the Most From Your Penetration TestsTRENDING
URM’s blog discusses how to prevent and mitigate the damage done by ransomware attacks, and how penetration testing can help your organisation avoid them.
Data Protection
Published on
29/5/2024
First official European response to the Data Protection and Digital Information BillTRENDING
URM’s blog explores the first formal European response to the DPDI Bill, and how the Bill may jeopardise the UK’s adequacy status when it reforms the UK GDPR.
Other Standards
Published on
17/5/2024
ISO 42001 and AI PerspectivesTRENDING
URM’s blog explores ISO 42001, its intentions and structure, and the AI perspectives that will need to be considered by organisations implementing the Standard.
Information Security
Published on
9/5/2024
Common Pitfalls Identified in Organisations Seeking ISO 27001 CertificationTRENDING
URM’s blog discusses the common pitfalls of the ISO 27001 implementation and certification process, and how you can avoid making the same mistakes.
Information Security
Published on
19/4/2024
Planning Your ISO 27001 Audit ProgrammeTRENDING
URM’s blog drills down into ISO 27001 audits, offering advice on how to effectively develop and implement an ISO 27001 conformant audit programme.
Data Protection
Published on
12/4/2024
Data Protection Considerations for Artificial Intelligence (AI)TRENDING
URM’s blog discusses the data protection considerations for utilising AI technologies, and how organisations can stay GDPR compliant in their use of AI.
Information Security
Published on
11/4/2024
PCI DSS v4.0: Network Security ControlsTRENDING
URM’s blog explains the wording changes in Requirement of the PCI DSS v4.0, offering advice on how organisations can select and use the most appropriate NSCs.
Business Continuity
Published on
5/4/2024
How to Develop a Robust Business Continuity PlanTRENDING
URM’s blog discusses the key steps to take in order to develop robust and effective business continuity plans which will enable you to recover from disruption.
Cyber Security
Published on
4/4/2024
I’ve Got my Cyber Essentials - Now What?TRENDING
URM’s blog discusses the best next steps your organisation can take following Cyber Essentials certification to further enhance its security posture.
Should it be required, we can also manage your full ISO 27001 internal audit process and would welcome the opportunity to discuss your requirements with you.
Find out more
how URM CAN HELP?
URM CONSULTING services
Does your mobile application need to be pen tested?
URM can conduct penetration tests on mobile apps that are deployed to either Apple IOS or Android devices, typically against the OWASP MASVS, but also under the CREST OVS framework where required.
Read more
URM CONSULTING services
Ready to Prepare for STAIRs?
Preparing early is essential, and URM can support you through every step of the transition. Register to get practical guidance.
Read more
URM CONSULTING services
Do you need support in meeting your annual PCI DSS penetration testing requirements?
As a CREST-accredited penetration testing organisation, URM can complete internal and external penetration tests.
Read more
"
I am pleased to recognise the work of the URM internal auditor we have worked. Throughout all the audits carried out, he has consistently demonstrated professionalism, diligence, and a commitment to excellence in every task undertaken. Thanks to his efforts, we have achieved a very successful first stage ISO 27001:2022 certification audit, with zero findings noted, which has positioned us on track for the second stage audit and for long-term success.
contact US
Let us help you
Let us help you in your compliance journey by completing the form and letting us know how we can best support you.