When it comes to information security, there are as many ways to go wrong as to go right. That is why, before a financial institution attempts to implement and improve its security risk management process, it must examine its fundamental level of maturity. Is the organization ready for risk management?
Rebecca Herold is a nationally-known author and consultant who won national awards for her successful risk management and information protection programs while directing the information security program for Principal Financial Group. She shares her experience building effective information protection programs and also...
Federal regulations require many organizations to conduct independent testing of their computing and networking environment at regular intervals. Many organizations comply with this requirement by conducting penetration testing and vulnerability analyses. These tests offer a snapshot of an organization's security...
The sixth anniversary of September 11th draws near, and the question floating among those in the financial services industry remains, â€œIs my institution ready in the event another 9-11 happens?â€For information security expert William Crowell, his thinking is that by having a completely integrated and...
Vendor Management is one a regulatory hot-button - a key focus of examinations. Register for this webinar to learn:
Legal requirements for ensuring sound vendor security practices
The risks involved with outsourcing
How to mitigate those risks
How to ensure the vendor complies with regulatory responsibilities
Register for this updated webinar to receive:
A heads-up on key examination issues
Review of the IT Risk Management Program Examination Process
Overview of IT Examination Officer's Questionnaire
What to expect, and how to respond
A look at what the regulatory agencies base IT exams on and how your institution can be best prepared
Preparing for the pre-examination IT Questionnaire and the effect your responses will have
How do GLBA Section 501(b), the Bank Secrecy Act, Patriot Act, and FACTA figure into a regulatory IT exam
Examination of IT risk assessments and how they are vital to financial institutions
A look at why IT risk assessments are important to your organization
How an IT risk assessment is performed
Sample assessment matrix included