Mobile Menu icon

Whatever you need we've got IT covered.

Our highly experienced support team are capable of handling any IT support issue, so you can relax and concentrate on making your business a success.

In the event of any problems, our standard support hours are 9am-5.30pm, Monday-Thursday, and until 5.00pm on Friday. We offer an extended hours contract whereby the support hours become 8am-6pm, Monday-Friday. If you need a quick solution to a technical problem, then our live remote-assistance tool can help. A member of our dedicated support team can liaise directly with you to find the answer to your question.

Step One - Call 0844 800 4456

CLICK HERE FOR LIVE REMOTE ASSISTANCE

×

Support Form

If you are in need of support please fill in the form below or call us on 0844 800 4456

×

Contact Us

London Office:

Main number: 020 3507 1920

Sales number: 020 3507 1922

Technical support: 0844 800 4456

Essex Office:

Main number: 01268 494 100

Sales number: 01268 494 160

Technical support: 0844 800 4456

×

Blogs

Payment Card Industry vs International Organisation for Standards

Anyone researching the Payment Card Industry, or PCI, for the first time may notice many similarities with ISO regulations, short for International Organisation for Standards, and specifically ISO 27001. Both are sets of regulations for companies to follow concerning information security management. 

Similarities- The goal of PCI and ISO is to control and protect customer data, by establishing international industry standards. Both require audits and scans of systems to show compliance with these standards. Both also operate on industry best practices set forth by regulating committees. PCI DSS can be used as a part of becoming ISO 27001 compliant, and that is where the similarities stop.

Differences- While PCI and ISO are similar in ideology, their methods differ. The table below notes some of these differences.

Topic

PCI

ISO

Geographical Acceptance

North American & Europe

Internationally Recognized

Compliance Mandates

Compliance Mandatory

Compliance Voluntary

Company Scope

Functioning Levels

Overall Company

Degree of Compliance

Must Meet All Standards

Standards Voluntary

Separation of Systems

High

Low

Degree of Flexibility

Low

High

ISO is an overall measure for companies to use for compliance of information security management. PCI is a more standardised and regulated sub-section of information security management that pertains specifically to cardholder data. PCI compliance could be a part of overall ISO compliance if a company were concerned with meeting both regulations. This is an important topic for a systems administrator to understand, but ISO is voluntary whereas PCI is mandated. Though having many differences both aim to protect sensitive company and cardholder information, which should be a concern of any company and its stakeholders.

If you would like to find out more about Cyber Essentials please contact Maria West 01268 494160 or email: info@yellowspring.co.uk

back

Latest News

Disaster Recovery planning is so important for your business, so take the time now to view

Read more

Security professionals have adopted more sophisticated ways of keeping themselves safe from cyber attackers. Despite

Read more

Maintaining business as usual in a connected world is dependent upon our ability to communicate

Read more