Training

Standards, Regulations & Compliance

FFIEC Authentication Guidance: How to Prepare for Your Next Exam

Presented by ISMG     90 Minutes    
FFIEC Authentication Guidance: How to Prepare for Your Next Exam
Upon issuing its 2011 update to online authentication guidance, the FFIEC put banking institutions on notice: Examiners will assess how institutions satisfy these enhanced expectations starting in January 2012. So, how best should banking/security leaders go about meeting these new directives and ensuring the security of their retail and commercial customers?

Join a veteran banking/security leader for advice on:

  • How to assess your institution's current level of compliance with the new directives;
  • What "layered security" means in practical terms;
  • Conducting effective risk assessments and customer awareness campaigns;
  • How to differentiate security controls between commercial and consumer accounts.

See Also: JavaScript and Blockchain: Technologies You Can't Ignore

The entire FFIEC Guidance series:

Background

The Federal Financial Institutions Examination Council has formally released the long-awaited supplement to its "Authentication in an Internet Banking Environment" guidance, which was first issued by the FFIEC in October 2005. Formal assessments for compliance with the new guidance will begin in January 2012.

The purpose of the supplement is to reinforce the risk-management framework described in the original guidance and update the FFIEC member agencies' supervisory expectations regarding customer authentication, layered security, and other controls in the increasingly hostile online environment.

The official supplement highlights the need for:

  • Better risk assessments;
  • Effective strategies for mitigating known online risks;
  • Improved customer and employee fraud awareness.

In this exclusive session, Matthew Speare of M&T Bank will outline a strategy for how to prepare for your next regulatory examination. Among his points of discussion:

  • An overview of the FFIEC update - highlighted items that banks should be concerned about;
  • Which technology solutions you should consider to bolster your case for complying with the guidelines;
  • Positioning yourself for success with the regulators. (ie, how to "prove" you are in compliance).

Webinar Registration

Premium Members Only

OnDemand access to this webinar is restricted to Premium Members.

Join Now to Access
Have an account? Sign in.


Around the Network

Mapping the Unseen Vulnerabilities of Zombie APIs
Mapping the Unseen Vulnerabilities of Zombie APIs
Getting a Tighter Grip on Vendor Security Risk in Healthcare
Getting a Tighter Grip on Vendor Security Risk in Healthcare
How Biden's AI Executive Order Will Affect Healthcare
How Biden's AI Executive Order Will Affect Healthcare
Supporting CISA - The 'Focal Point of Our Defensive Efforts'
Supporting CISA - The 'Focal Point of Our Defensive Efforts'
Good Governance: 'It's All Hygiene'
Good Governance: 'It's All Hygiene'
Mapping Access - and Attack - Paths in Active Directory
Mapping Access - and Attack - Paths in Active Directory
Stopping Cloud Workload Attacks
Stopping Cloud Workload Attacks
Israel-Hamas War: 'We All Know Someone That Lost Someone'
Israel-Hamas War: 'We All Know Someone That Lost Someone'
Why Hospitals Should Beware of Malicious AI Use
Why Hospitals Should Beware of Malicious AI Use
How a CEO Runs a Company in Wartime
How a CEO Runs a Company in Wartime

Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing bankinfosecurity.com, you agree to our use of cookies.