Vulnerability Management

Products

System & Network Scanning

Find vulnerabilities in your entire infrastructure.

Web Application Scanning

Find vulnerabilities in your web apps and APIs.

Phishing & Awareness Training

Increase resilience against social engineering.

Distribution Options

Cloud

Efficient and secure in the cloud.

On-premise

Installed in your infra with local storage.

Professional services

Premium Support

Flexible support for maximum ROI.

Penetration testing

Combine PT and VM.

PCI DSS compliance

Meet compliance demands.

Vulnerability Management

Holm Security Vulnerability Management Platform

Take your tour
Solutions

Business needs

Industries

Compliance

Resources
Customers
Pricing
Partner

Information

Partner solutions

About us
Login

Security Center

Organizer

Start your free trial

System & Network Scanning

Systems, IoT, OT, SCADA etc.

Web App Scanning

All web apps and APIs.

Phishing Simulation

Build your human firewall.
Delivery option

Cloud
Delivery option

On-premise
Start your free trial

Pen. testing

Premium support

PCI compliance

Solutions

Resources

Partner

Pricing

About us

Pen. testing

Premium support

PCI compliance

Solutions

Business needs
AWS (Amazon Web Services)
COVID-19
IoT (Internet of Things)
Microsoft Azure
MSSP, MSP & SP (Service Providers)
OT, ICS, SCADA & PLC
SIEM integration
Social Engineering
Threat Intelligence
VAPT
Work from Home (WFH)
Risk Posture & Assessment
Risk-based Vulnerability Management
Industries
Education
Energy sector
Healthcare
Municipality
Retail & e-commerce
Shipping & maritime
Compliance
GDPR
HIPAA
ISO/IEC 27001
NIS
OWASP top 10
PCI DSS
Personal Data Protection Act
Personal Data Protection Bill
PSD2 (Payment Service Directive 2)
RMiT
SOX

Resources

Webinars
Blog
Customers
Support pages

Partner

Information
Become a partner
Partner Solutions
MSSP Partner Program
Managed SaaS

Pricing

About us

Our story
Join us
Management Team
Board
Contact

COMPLIANCE

Payment Service Directive 2

The Payment Service Directive (PSD2) aims to standardize the market, strengthen customer safety, and support technical innovation through increased competition. The new standard requires more robust identity controls, such as two-factor authentication for online payments.

Security requirements

PSD2 is an updated version of the current payment service directive, PSD. The most significant difference between the two is that banks will now be forced to make their API:s more open and accessible. A result of this is that third-party services can use the banks' customer data and infrastructure. If the client first authorized it, internet payments can be initiated directly from their bank account. The directive enables more companies to enter the market and compete with traditional banks.

The PSD2 directive imposes new safety requirements in terms of product and system development. Here are some of the requirements:

  • Continuous testing of processes and security systems.
  • Risk assessment – including identification and classification of functions, processes, and assets, as well as access control.
  • Processes and functions continuously monitor business functions, transactions, information assets with correlated measures to identify information leaks, vulnerable code, and generally known vulnerabilities.
  • The framework for dealing with operative risks and security risks should be integrated into the risk management process.
  • Continuity plans and ongoing continuity controls.