The Blog

Information Security Management Systems – It’s all about the Business!

By Axenic Team, on 25 May, 2014

An Information Security Management System (ISMS) is a security framework comprised of policies, processes and the management of technologies to address an organisation’s information security requirements.

Using Logical Trust Domains to understand DNSSEC

By Axenic Team, on 12 April, 2014

The implementation of DNSSEC has been gaining momentum recently as organisations and vendors implement and make available the systems and tools required to ensure the integrity of the DNS lookup process.

Better Security Policy Leads To Greater Compliance

By Jim, on 26 March, 2014

It is a long-standing principle that all organisations, from the large multi-national to the small business, need and should have some kind of security policy.

Using Sampling To Ensure Effective Audit, Certification and Accreditation.

By Jim, on 11 March, 2014

At Axenic, we have two ISO 27001 Lead auditors and perform a significant number of certification reviews for NZ government agencies. One of the common challenges of auditing is selecting which controls (both procedural and technical) to assess when a client has a limited time-frame or budget.

Highlights from the Verizon 2014 PCI Compliance Report

By Jim, on 18 February, 2014

Verizon has published its 2014 PCI Compliance Report, which can be downloaded from here. Like their Data Breach Investigation Report (DBIR) it is an excellent piece of research and provides insight into the challenges associated with complying with the Payment Card Industry’s Data Security Standard (PCI DSS) v2.0.

Security and Privacy

By Jim, on 10 February, 2014

Contrary to popular belief security and privacy are not synonymous. This misconception appears to have been exasperated by the media reporting of the high profile privacy breaches that have occurred over the last couple of years.

Get our news as it happens

Click here to subscribe to our newsletter