Princeton, NJ (BankInfoSecurity.com) December 12, 2006 – In many ways, the most significant challenges presented by Section 501(b) are those that are non-technical such as conducting an enterprise-wide Information Security Risk Assessment and the requirements to engage the Board of Directors in the ongoing management of operational risk. This workshop will expand on many of these areas and present practical and proven approaches many institutions have adopted in order to comply with Section 501(B) of GLBA and Section 216 of Fair and Accurate Credit Transaction Act.
FFIEC examination guidelines direct bank examiners to consider the specific review areas listed below. In the course of this workshop, BankInfoSecurity.com will provide detailed “best practices” recommendations to help organizations achieve compliance with GLBA Section 501(b). The webinar will also help determe The Board's role in the creation and oversight of an information security program, evaluate the risk assessment process, evaluate the program's instituted to manage and control risk, and assess the measures taken to oversee third-party service providers.
This webinar will be presented by Susan Orr, CISA, CISM, CRP, an ex-FDIC examiner. Susan is a leading financial services expert with vast regulatory, risk management, and security best practice knowledge and expertise . During her 14 year tenure as a bank examiner, Susan held numerous lead positions including Regional IT Examination Specialist, Special Assistant to the Regional Director, Special Assistant to the Director of DSC, and Special Assistant to the Vice Chairman of the FDIC. Susan was also a lead instructor for the FDIC’s technology school and was instrumental in key industry initiatives such as the FDIC E-Risk Strategic Initiatives Risk Monitoring Committee, the Chicago Region Interagency Technology Group, and the Federal Financial Institutions Examination Council (FFIEC) IT Handbook rewrites. Susan retains close relationships within the FFIEC agencies as well as industry trade groups to stay abreast on new technologies, best practices, and regulatory issues.
Susan also speaks regularly at risk management and security educational seminars and has authored numerous white papers on emerging information technology and security risk management topics. Susan is a Certified Information Systems Auditor (CISA), Certified Information Systems Manager (CISM) and Certified Risk Professional (CRP). For additional information about the BankInfoSecurity.com GLBA Compliance webinar, please visit: https://www.bankinfosecurity.com/workshop_glba.php.