News & Events

Upcoming Events

See us at Infosec Europe 2020

Infosec 2020

One Compliance Blog

Ransomware Mitigation Fundamentals

With the Travelex ransomware situation in the news, it is important for all information security folks to review ransomware mitigation strategies and be sure that plans are in-place should the worst happen. Firstly, there is not, and is unlikely to be any further detail on the Travelex situation.  Any speculation as to what and how it happened is unhelpful and unnecessary.  I have no doubt that Travelex will currently be unpicking their situation, and have all appropriate resources in place to remediate their problems. For the purposes of this blog, we are going to look at fundamental mitigation techniques

Read More »
Password Book

Secret Santa Fail

The January blues are in full-flow around the nation and not only am I in a grump but I’m being massively ungrateful to boot! Allow me to explain. This year, we moved to lovely new serviced offices and to prove that I’m not always in a crank, we participated in Secret Santa with the other companies who share office space here. Of course, I went all out (if you know, you know!) and in return I was given some chocolates and a notebook. Now, I love chocolate and I can never have enough notepads as I try and make

Read More »

One Compliance are now CREST Accredited for Penetration Testing

We are pleased and extremely proud to announce that we have achieved CREST accreditation for our Penetration Testing services, an internationally recognised endorsement of our robust network security testing methodologies. CREST provides independent, verifiable third-party assessments of security testing businesses in the UK and across the world and gives clients a demonstrable level of assurance that the security testing processes and procedures being deployed meet the highest professional standards. Achieving the CREST accreditation required a rigorous assessment of our company business processes, data security and security testing methodologies. We at One Compliance have always striven to

Read More »

The Cybercriminal fraternity doesn’t care about your change freeze

Halloween is over, the clocks have gone back so it must be time to dust off the baubles and lock down your network ready for biggest online sales event of the year, otherwise known as Black Friday. It is easy to understand why applying a “change freeze” to the E-Commerce infrastructure, over one of the busiest periods in the retail year, seems like a solid and sensible approach. Why would you want to allow for possible interruption of sales during such a commercially critical time? The answer is the Cybercriminal. To the hacker community, change freezes

Read More »

All Pen Tests are Equal, but some are more Equal than others

Let’s be honest, no business actually wants the hassle and cost of regularly testing that their network security controls are up to the task of protecting their corporate assets. Without the threat of serious financial penalties hanging over them penetration tests would probably be way down the list of priorities for most organisations. So, it is understandable that when it comes around to that time of year again there can be a temptation to look for a quick fix to get the tick in the box that says they are OK for another 12 months. Or

Read More »

One Compliance on the Move

Here at One Compliance things are definitely on the move, in more ways than one. Starting with our swanky new offices in the heart of Leeds, Yorkshire’s (and arguably the North’s) most vibrant city. With plenty of room to expand in line with our ambitious plans the bright, modern environment is a perfect home to help us grow the business into the go-to name for everything compliance wise (the clue is in the name!) in the cyber-security sector. Also, with a bright new Web site to match, all is set to build on our success achieved

Read More »

Ransomware Mitigation Fundamentals

With the Travelex ransomware situation in the news, it is important for all information security folks to review ransomware mitigation strategies and be sure that plans are in-place should the worst happen. Firstly, there is not, and is unlikely to be any further detail on the Travelex situation.  Any speculation as to what and how it happened is unhelpful and unnecessary.  I have no doubt that Travelex will currently be unpicking their situation, and have all appropriate resources in place to remediate their problems. For the purposes of this blog, we are going to look at fundamental mitigation techniques

Read More »

Secret Santa Fail

The January blues are in full-flow around the nation and not only am I in a grump but I’m being massively ungrateful to boot! Allow me to explain. This year, we moved to lovely new serviced offices and to prove that I’m not always in a crank, we participated in Secret Santa with the other companies who share office space here. Of course, I went all out (if you know, you know!) and in return I was given some chocolates and a notebook. Now, I love chocolate and I can never have enough notepads as I try and make

Read More »

One Compliance are now CREST Accredited for Penetration Testing

We are pleased and extremely proud to announce that we have achieved CREST accreditation for our Penetration Testing services, an internationally recognised endorsement of our robust network security testing methodologies. CREST provides independent, verifiable third-party assessments of security testing businesses in the UK and across the world and gives clients a demonstrable level of assurance that the security testing processes and procedures being deployed meet the highest professional standards. Achieving the CREST accreditation required a rigorous assessment of our company business processes, data security and security testing methodologies. We at One Compliance have always striven to

Read More »

The Cybercriminal fraternity doesn’t care about your change freeze

Halloween is over, the clocks have gone back so it must be time to dust off the baubles and lock down your network ready for biggest online sales event of the year, otherwise known as Black Friday. It is easy to understand why applying a “change freeze” to the E-Commerce infrastructure, over one of the busiest periods in the retail year, seems like a solid and sensible approach. Why would you want to allow for possible interruption of sales during such a commercially critical time? The answer is the Cybercriminal. To the hacker community, change freezes

Read More »

All Pen Tests are Equal, but some are more Equal than others

Let’s be honest, no business actually wants the hassle and cost of regularly testing that their network security controls are up to the task of protecting their corporate assets. Without the threat of serious financial penalties hanging over them penetration tests would probably be way down the list of priorities for most organisations. So, it is understandable that when it comes around to that time of year again there can be a temptation to look for a quick fix to get the tick in the box that says they are OK for another 12 months. Or

Read More »

One Compliance on the Move

Here at One Compliance things are definitely on the move, in more ways than one. Starting with our swanky new offices in the heart of Leeds, Yorkshire’s (and arguably the North’s) most vibrant city. With plenty of room to expand in line with our ambitious plans the bright, modern environment is a perfect home to help us grow the business into the go-to name for everything compliance wise (the clue is in the name!) in the cyber-security sector. Also, with a bright new Web site to match, all is set to build on our success achieved

Read More »