Documente Academic
Documente Profesional
Documente Cultură
Presented by:
M ONE, Inc.
Presentation Overview
Why is technology risk management important? How to conduct a comprehensive technology risk assessment Maintaining an adequate information security program Effective and not-so-effective practices
The growing threat of cyber-crime Legal and regulatory requirements for safeguarding customer information
Risk management
Objective is to control the level of risk associated with an activity
If you cant measure it, you cant manage it. --Peter Drucker
Threats: Hackers
Script kiddies Experimenters
Hardware flaws
Unsecured PCs Open modems
Crackers
Malicious attackers Extortionists
Denial of service
External interruption Internal interruption
Weak policies
Poor passwords E-mail misuse
Insiders
Employees Contractors
Impersonation
Intellectual property theft Fraud
System faults
Errors/inaccuracies
Untrained staff
Strategy
Management
Support
Summing it up...
Technology is revolutionizing the financial services industry New vulnerabilities and threats raise challenges for financial institutions To protect your bank, regularly evaluate and update your information security program based on a comprehensive risk-focused assessment