When I started this job a year ago and reached out to banking/security leaders, the overwhelming message I got was "Security awareness - we don't do it well."
For banking institution employees, maybe there was an information security training seminar when they first started. Or an occasional workshop on identity...
Governance is a term increasingly used in financial institutions, as banking/security leaders try to introduce new processes and disciplines to their organizations.
In this exclusive interview, Jennifer Bayuk, an information security specialist and former CISO at Bear Stearns & Co., discusses:
What governance...
Interview with Matt Bishop, Professor of Computer Science, UC-Davis
Career opportunities abound for people interested in entering information security as an entry-level or mid-career position.
In this exclusive interview, Matt Bishop, Professor of Computer Science at UC-Davis, discusses:
His current...
Interview with Jennifer Bayuk, Former CISO at Bear Stearns & Co.
Governance is a term increasingly used in financial institutions, as banking/security leaders try to introduce new processes and disciplines to their organizations.
In this exclusive interview, Jennifer Bayuk, an information security specialist...
Brian Dean is Senior Vice President in the Privacy Department at Ohio-based Key Bank with assets under management of approximately $102 billion. A privacy professional for over eight years, Dean has long worked with Key management to begin the convergence journey. He refined this vision as an adjunct professor at a...
Information Security Media Group (ISMG), publisher of BankInfoSecurity.com and CUInfosecurity.com, recently posed a few questions to Debbie Wheeler, Chief Information Security Officer for Fifth Third Bancorp headquartered in Cincinnati, Ohio with approximately $111 billion in assets under management. In her current...
To quote from his own biography, Eugene H. Spafford is one of the most senior and recognized leaders in the field of computing. He has an on-going record of accomplishment as a senior advisor and consultant on issues of security and intelligence, education, cybercrime and computing policy to a number of major...
Clearly all businesses are really under pressure given the current slow economic environment. However, the greatest impact on a financial institution no matter what is always its customer. "At the heart of a bank lies the customer and customer trust is paramount for financial institutions," says Doug Johnson from the...
Effective November 1, 2008, all federally regulated banks, credit card companies and other financial institutions will be required to be in full compliance with the Identity Theft Red Flags Rule, which is designed to financial services firms protect consumers' identities.. The goal of the rules is to "flag" attempted...
Interview with Brent Rickles, SVP, First National Bank of Bosque County, on Securing Financial Data and Systems Through Application Whitelisting
"Whitelisting" is a new twist on information security. Instead of trying to find a software solution that keeps all of the potential bad guys out of your systems,...
BASICS
What is the CISSP?
The Certified Information Systems Security Professional (CISSP) certification is a broad exam, yet fairly balanced in its coverage of security topics. If you are responsible for maintaining IT security in your organization, this is an excellent exam to strengthen and expand your...
The Gramm-Leach-Bliley Act (GLBA)requires financial institutions to hold personal information of customers confidentially and securely against any reasonably anticipated internal or external threats or hazards and offer protection against unauthorized access etc to ensure integrity of customer information is not...
Stephen Northcutt, CEO of the SANS Technology Institute and an acknowledged expert in training and certification, addresses the role of certification and the state of education within Information Security.
Q: What is the role of certification in information security?
Northcutt: Certification means that someone...
In the face of regulatory requirements and emerging security threats, banking institutions must consider the policies and procedures necessary for proper retention of audit reports, papers and logs.
Register for this webinar for an overview of the contractual, legal and regulatory compliance requirements for...
When most people hear "Social Engineering," they think of the criminal aspects of the term. But the practice also has professional applications for security practitioners who want to help test and improve organizations' security practices.
Social Engineering is the act of gaining unauthorized access to systems or...
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing careersinfosecurity.com, you agree to our use of cookies.
