| PCI |
|
| A forum site for PCI professionals, which is at times more informative than the PCI Council’s website:
|
http://forum.paymentsecuritypros.com/ |
| This guy is a very active & knowledgeable member of the PCI forum who writes well: |
http://pciguru.wordpress.com/ |
| PCI FAQ of PCI Council: |
https://www.pcisecuritystandards.org/ |
| ISO 27001 |
|
| Here you find a free toolkit with a lot of helpful contributions around the ISO standards:
|
http://www.iso27001security.com/html/iso27k_toolkit.html |
| Buy and download the standards |
http://www.iso.org/iso/home.html |
| Security Assessment & Best Practice |
|
| Very comprehensive and free audit questionnaires, shared assessments for service providers: |
http://www.sharedassessments.org/value/ |
| Centre for Internet Security (CIS) audit & benchmark tools |
http://cisecurity.org/en-us/?route=default |
| Best practice & detailed guidelines on just about anything related to security |
http://csrc.nist.gov/index.html |
| Security Awareness & Training |
http://www.popcorntraining.com |
