Risk Assessment

Key Elements of Risk Management

ISSA's Debbie Christofferson on How to Manage IT Security Risk

Monday, August 30, 2010

Debbie Christofferson has worked in IT and information security for many years. And if there's anything she's learned about risk management, it's this: It's all about risk. "All of your decisions about information security should be based on risk to the organization."

Read Entire Article

Agency Alerts for Risk Assessment

March 11, 2009
Comptroller of the Currency Hosts Community Bank Directors Workshops in Point Clear, Alabama
January 30, 2009
OCC Workshops for National Community Bank Directors
November 24, 2008
Joint Statement by Treasury, Federal Reserve and the FDIC on Citigroup

Testing Security Controls: Learn from the Experts

Penetration testing and Vulnerability Analysis is security testing in which a security analyst attempts to circumvent the security features of a system based on their understanding of the system design and implementation. The purpose of penetration testing or vulnerability analysis is to identify methods of gaining access to a system by using common tools and techniques developed by "hackers." ...

Next Presentation: October 22, 2010 @ 1:00 PM (EDT)

Vendor Management Part III: Inside the BITS Shared Assessments Program

Presented By: Jim Routh, CISM, Chief Information Security Officer, The Depository Trust & Clearing Corporation and Andrew Hout, Citi and Eddie Holt, Partner, KPMG LLP and Michele Edson, Senior Vice President, The Santa Fe Group and Niall Browne, Chief Information Security Officer, LiveOps and Scott Brown, Program Manager, Financial Services, Iron Mountain
Next Presentation: January 1, 2011 @ 10:00 AM (EDT)

Business Continuity Risk Assessment & Resource Allocation

Presented By: Dana Turner

Business Impact Analysis -- How to Get it Right

Presented By: Matthew Speare, Senior Vice President of Information Technology, M & T Bank Corporation

Common Regulatory Examination Findings

Presented By: Susan Orr, CISA, CISM, CRP