CLOSE

Stefan-Thelberg

Stefan Thelberg,
CEO, Sweden
stefan.thelberg@holmsecurity.com
+46 (0)739-99 33 12

Welcome to Sweden!

Vi guidar dig gneom nästa generations sårbarhetsanalyser Sveriges största plattform för automatiserade & kontinuerliga sårbarhetsanalyser. Som bara blir bättre.

Read more

Get started

CLOSE

Stefan-Thelberg

Stefan Thelberg,
CEO, Sweden
stefan.thelberg@holmsecurity.com
+46 (0)739-99 33 12

Welcome to UK!

Vi guidar dig gneom nästa generations sårbarhetsanalyser Sveriges största plattform för automatiserade & kontinuerliga sårbarhetsanalyser. Som bara blir bättre.

Read more

Get started

CLOSE

Stefan-Thelberg

Alok Sahay,
Sales Director, India
alok.sahay@holmsecurity.com
+91 8800-67 77 99

Welcome to India!

Hi! My name is Alok and I'm your local representative in India.

Looking for a cyber security solution and vulnerability management? Let's talk! 

View products

Book demo

CLOSE

Stefan-Thelberg

Stefan Thelberg,
CEO, Sweden
stefan.thelberg@holmsecurity.com
+46 (0)739-99 33 12

Welcome to Norge!

Vi guidar dig gneom nästa generations sårbarhetsanalyser Sveriges största plattform för automatiserade & kontinuerliga sårbarhetsanalyser. Som bara blir bättre.

Read more

Get started

CLOSE

Stefan-Thelberg

Stefan Thelberg,
CEO, Sweden
stefan.thelberg@holmsecurity.com
+46 (0)739-99 33 12

Welcome to Malaysia

Vi guidar dig gneom nästa generations sårbarhetsanalyser Sveriges största plattform för automatiserade & kontinuerliga sårbarhetsanalyser. Som bara blir bättre.

Read more

Get started

Compliance

Payment Service Directive 2

The Payment Service Directive (PSD2) became effective on the 14th of September 2019. The directive aims to standardize the market, strengthen customer safety, and support technical innovation through increased competition. The new standard requires stronger identity controls, with for example two-factor authentication for online payments.

Security requirements

PSD2 is an updated version of the current payment service directive, PSD. The biggest difference between the two is that banks will now be forced to make their API:s more open and accessible. A result of this is that third-party services can use the banks' customer data and infrastructure. If the client first authorized it, internet payments can be initiated directly from the client’s bank account. The directive enables more companies to enter the market and compete with traditional banks.

The PSD2 directive imposes new safety requirements in terms of product and system development. Here are some of the requirements:

  • Continuous testing of processes and security systems.
  • Risk assessment – including identification and classification of functions, processes, and assets, as well as access control.
  • Processes and functions to continuously monitor business functions, transactions, information assets with correlated measures to identify information leaks, vulnerable code, and generally known vulnerabilities.
  • Framework for dealing with operative risks and security risks, which should be integrated into the risk management process.
  • Continuity plans and ongoing continuity controls.