EDITOR'S NOTE: This is the first installment of an occasional series summarizing key banking/security regulatory documents.
The Business Continuity Planning manual is part of the IT Examination Handbook from Federal Financial Institutions Examination Council (FFIEC). The March 2008 version of the BCP manual has...
As financial institutions continue to migrate their services and operations online, the Office of the Comptroller of the Currency reminds national banks and their technology service providers about the importance of application security as a component of an information security program.
A new OCC bulletin...
Data security breaches add millions of dollars to bottom line expenses, but there is also the immeasurable cost of security breaches on your brand that affect future revenue and growth. Virtually every financial institution today exchanges large amounts of information both inside and outside the organization....
What happens if your institution suffers an ATM skimming attack and customer accounts have been compromised? Or if a payments processor is hacked and thousands of your credit/debit cardholders are potentially exposed to fraud?
These aren't hypothetical breaches; they've occurred. Repeatedly. And they prove that an...
Interview With Emergency Management Expert Regina Phelps
Of all the major areas of business continuity/disaster recovery, pandemic preparation is where financial institutions say they've done the least work. And yet it is the major focus of banking regulators, which in 2008 expect institutions to step up their...
OK, so not everybody's confidential information generates the same level of interest as Barack Obama's, Hillary Clinton's or John McCain's passport files.
But the latest State Department scandal nevertheless holds a relevant lesson for financial institutions: Be ever mindful of your customers' privacy....
Interview with Philip Alexander, Information Security Officer
Offshore outsourcing - it's a topic that stirs great debate among banking/security leaders. Proponents tout the potential cost-savings and easy access to top talent. Opponents point to cultural, infrastructural and, yes, security concerns inherent in...
With vendor management getting increased attention from federal regulators and banking institutions, momentum builds for the Financial Institution Shared Assessments Program -- which would essentially provide a standard seal of approval for third-party service providers.
Join in this tactical discussion of how financial institutions are using new technologies to successfully prevent, identify and respond to security threats, no matter where they originate.
Learn how to identify, prevent and rapidly respond to user threats and data breaches
Find out how, while mitigating...
If there's one single notion common to financial institutions of all sizes, it is confidence -the need to have shared trust with employees, partners and especially customers. Without this confidence, banking institutions cannot succeed.
And if there's one common theme emerging from the inaugural State of Banking...
If 2007 is any indication, then 2008 is going to be a wild year for financial institutions facing a slew of risk management issues.
Hanging like the sword of Damocles above all is the subprime mortgage crisis, which sees institutions looking for ways to avoid foreclosures and challenges surrounding underwriting....
It was a banner year for information security incidents, which proved to be indiscriminate. No national boundary, employee group or trusted service provider is exempt. And no breach is worth its cost in damages, reparations and loss of reputation. From these incidents, we draw 10 lessons learned to guide financial...
You've seen the biggest stories and security incidents of 2007. Now here's a list of the most popular federal agency releases and regulations of the year.
Did you know the use of SLAs as part of the service delivery management process is rising - for external use, internal use, or outsourcing agreements?
A Service Level Agreement (SLA) is a formal, negotiated agreement that spells out the level of service that will be delivered from a service provider to its...
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing bankinfosecurity.asia, you agree to our use of cookies.
