When it comes to social media, organizations have to be vigilant and consistent with risk assessments that closely monitor and evaluate emerging threats, says Andrew Kennedy of BITS.
Just over a month after Citigroup confirmed a breach of its online banking platform, a second breach affecting Citi customers has come to light, this time in Japan.
Ian Harper of Pentagon Federal Credit Union says financial institutions should continually review their risk management processes, a recommendation reinforced by the new FFIEC Authentication Guidance.
"The need for fraud-prevention tools increases during times of recession," says Aite Group's Julie McNelley, who does not believe this week's economic shockwaves will hurt organizations' security priorities.
ISACA's Marc Vael says differences in cloud computing environments and cloud providers can pose security risks. But well thought-out contracts and risk-management plans can fill potential security gaps and ensure business continuity during outages and disasters.
In social media policies, organizations are putting too much emphasis on what not to do, as opposed to how to navigate the space effectively, says social media expert Sherrie Madia.
As attacks targeting online banking (e-banking) applications grow more sophisticated and more frequent, financial institutions need to strengthen their defenses. In response to these changing demands, the Federal Financial Institutions Examination Council (FFIEC) released revised security guidelines for secure banking...
In January 2012, FFIEC examiners will be formally assessing financial institutions' adherence to the new FFIEC "Supplement to Authentication in an Internet Banking Environment" guidelines. Is your organization ready? The following check list outlines some of the fundamental requirements of the new FFIEC Authentication...
The rising trend of smartphone usage across the financial services industry is causing concern amongst IT departments struggling to manage policy, security and support. Such challenges can be trumped using effective mobile device management software. Good for Enterprise(TM) allows businesses to access and protect data...
The updated FFIEC Guidance on Authentication in an Internet Banking Environment, released in June, set a new standard for online banking security. The guidance calls for a layered security approach and stronger more effective authentication techniques, including replacing challenge questions based on shared secrets...
Banking institutions have a lot to do in order to prepare for the Jan. 2012 deadline to conform with the new FFIEC authentication guidance, and former banking regulator William Henley has one, simple piece of advice: start now.
It's the common challenge: Federal budgets are level-funded or cut. But as critical data becomes ever-more mobile and regulatory mandates grow, how do you use your limited resources to actually improve your agency's network security?
Join Jeff Schafer from the USGS Fort Collins Science Center in Colorado as he...
"It's time to stop shifting the security burden onto retailers and restaurants like Margarita's," says Gartner analyst Avivah Litan on the latest payment card breach. "In fact, it was time for that over five years ago."
Extensive news coverage about the attacks against RSA and others have made customers jittery. "The publicity resulted in many customers' risk tolerance going down whilst their level of awareness and concern went up," says RSA CFO David Goulden.
Scott Laliberte, managing director of Protiviti, wrote the book on penetration testing, and he has strong feelings about what organizations are doing right and wrong when assessing their information security risks today.
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing bankinfosecurity.com, you agree to our use of cookies.