Richard Swart

Editorial Contributor

Richard Swart is a contributing writer for BankInfoSecurity.com and CUInfoSecurity.com. Swart is currently pursuing Ph.D. in Management Information Systems at Utah State University. His areas of expertise include Information Security program management, including all aspects of governance, risk management and auditing. Recently, he led a nationwide research project comparing the Information Security competencies and skills needed in the industry versus the academic programs. Swart routinely interviews banking regulators, industry leaders and other Information Security practitioners for BankInfoSecurity.com and CUInfoSecurity.com.

Transcript of Bill Boni Vice-President of Motorola Corporation

Richard Swart • December 3, 2007

BONI: It is very, very important that we move beyond the idea that we have to just find the source of a problem and shut it down until now we have to find the source of the problem, investigate how and why and where the problem was instituted into our environments. And then share that with law enforcement or other...

Transcript of Ken Baylor, information security and privacy consultant

Richard Swart • November 30, 2007

BAYLOR: Companies really should understand the flow of data within the company. They should know where the data enters and where it leads, and they should classify the data according to sensitivity. The sensitivity of the data should really be the primary criteria as to where to spend resources. Data which...

Emerging Cyber Threats and Management of Information Security

Richard Swart • November 28, 2007

Bill Boni, Corporate Information Security Officer and Vice President, Motorola Corporation Bill Boni shares lessons he has learned in his 30 year career in IT security and discusses how organizations should manage their IT security function in order to respond to emerging threats. He reviews: â€¢ How...

Effective Privacy and Compliance Programs

Richard Swart • November 28, 2007

Ken Baylor, Information Security Consultant and former Chief Information Security and Privacy Officer, Symantec Dr. Ken Baylor is a senior Information Security adviser to Fortune 500 companies. He is the current president of the Silicon Valley chapter of ISACA. Dr. Baylor recently served as Symantec's Chief...

Transcript of Steven Jones of Synovus on Risk Management and Incident Response

Richard Swart • November 14, 2007

Richard Swart: Hi. This is Richard Swart with the Information Security Media Group, publishers of BankInfoSecurity.com and CUInfoSecurity.com. Today, we are speaking with Steven Jones, the Director of Information Security at Synovus. Good morning, Steven. Steven Jones: Good morning. How are you? Swart: ...

Transcript of Betsy Broder of FTC on Identity Protection Strategies

Richard Swart • November 14, 2007

Swart: Doing well. Iâ€™d like to start by talking about consumer issues, and Iâ€™d like to know, what is the FTC hearing from consumers about the ID theft problem? Is anything getting better? Broder: Well, we still receive a fair flow of victim complaints about identity theft. In any given week, we...

Transcript of FDIC's Michael Jackson on Update on CA Wildfires, BCP and Pandemic Planning Guidance

Richard Swart • November 14, 2007

Swart: And out of those 19 that had to close, did they institute an instant response plan, a business continuity plan, disaster recovery? Or do you know the level of response that they had to make? Jackson: We don't know the exact level of response but we feel certain that they instituted at least a certain...

Transcript of Security Expert Rebecca Herold:Total Information Protection

Richard Swart • November 12, 2007

Swart: I would like to start by talking about what are the personal risks that executives of financial institutions face if they fail to implement effective security or to comply with IT security regulations. Herold: Well, there are many. It is first important though for the financial institution leaders to...

Transcript of Mark Bernard on Risk Management and ISO Certification

Richard Swart • November 12, 2007

Swart: Well, speaking of accounting, a lot of executives are quite concerned that achieving ISO compliance, or excuse me, IS certification, will significantly increase their costs, and lead to the adoption of significantly more controls. Is that perception accurate? Bernard: Actually it's not. ISO is a big thing...

Update from FDIC on CA Wildfires, BCP and Pandemic Planning Guidance

Richard Swart • November 9, 2007

Michael Jackson, Associate Director of Technology Supervision of the FDIC, provides early data on the impact of the recent California wildfires, including: Number of banks and other FDIC-supervised institutions impacted; Specific guidance on what the FDIC expects in a business continuity plan; Preview of the...

Transcript of OTS' William Henley on Impact of California Wildfires and Implications for Disaster Recovery Planning

Richard Swart • November 6, 2007

Richard Swart: When you say operations were affected, was it just having to shut down their branches, or were they actually having to go into a full disaster recovery mode? William Henley: Well, we had two thrifts: One thrift implemented its disaster recovery plan, but it did not have to relocate; and the other...

Transcript of KPMG's Dan Manley on IT and Security Governance

Richard Swart • November 6, 2007

Swart: There are a lot of issues that are gaining prominence in IT management today, and one of the most interesting seems to be IT governance. I was wondering if you could summarize IT governance and why it is getting so much attention lately. Manley: Richard, IT governance helps make sure that companies have the...

Transcript of Getronic's John Pironti on Leading Edge Risk Management Practices

Richard Swart • November 6, 2007

Swart: Letâ€™s start talking about risk management, but rather talking about traditional issues of information and business impact analysis. I was wondering, is there some fundamental question or fundamental process that banking and finance executives should start with when they start thinking about risk...

Betsy Broder of FTC on: Identity Protection Strategies

Richard Swart • October 26, 2007

Betsy Broder offers practical advice for financial institutions on best practices to protect their customer information, and explains the federal government's efforts to address ID theft. She also addresses possible legislation that could affect a financial institution's data security and identity theft prevention...

Steven Jones of Synovus on: Risk Management and Incident Response

Richard Swart • October 12, 2007

Steven Jones is the Director of Information Security for Synovus, a bank holding company with 39 banks in the Southeast United States. In this podcast interview Mr Jones discusses the comprehensive risk management process he had created that provides best in class residual risk reporting and metrics. He discusses...