
	Home > Financial Services Information Security Tips > Compliance and Governance Digest > Information security governance using a risk-based approach

Financial Security Tips:

EMAIL THIS

TIPS & NEWSLETTERS TOPICS

COMPLIANCE AND GOVERNANCE DIGEST

Information security governance using a risk-based approach

Eric Holmquist, Contributor
11.04.2008
Rating: --- (out of 5)

Digg This!

StumbleUpon

Del.icio.us

More than ever information security in financial services requires a thorough combination of governance elements, including policies, procedures, technology and, most importantly, training and awareness. In this session, Eric Holmquist explores the key elements of sound information security governance and how to successfully manage and coordinate all of the complex and important elements.

Download this presentation to learn how to:

>> Download this presentation

About the presenter:
Eric Holmquist is the Vice President and Director of Operational Risk at Advanta Bank. Eric has over 25 years experience in the financial services industry and is a frequent industry author and speaker. He is responsible for the development and oversight of the bank's operational risk management program. In addition, Holmquist chairs the bank's MIS Council, an oversight group that provides governance with rega

Digg This!

StumbleUpon

Del.icio.us

RELATED CONTENT

	Compliance and Governance Digest
	Red Flags Rule compliance
	How AML compliance applies to remote deposit capture
	Tokenization and PCI compliance
	Data governance and classification
	The PCI compliance case for source code review
	Identity management for financial firms in turbulent times
	PCI DSS: Best practices for compliance
	Red Flag Rules compliance demands a risk-based approach
	Understanding the impact of new state data protection laws
	Understanding the FFIEC remote deposit capture guidance

Financial services compliance best practices

Red Flags Rule compliance

Why financials should pay attention to NERC CIP

The truth about vendor management

Using virtualization for compliance efforts

FFIEC releases risk management guidance for remote deposit capture

Using an information security council

How I learned to stop worrying and love my compliance department

Integrating ethics from top to bottom

Partner data privacy: Issuing stricter guidelines

How to implement the NIST role based access control model

Risk management frameworks, metrics and strategy

Controls monitoring helps with governance, risk and compliance

An advancement in GRC

Advocacy group looks to foster trust in foreign service providers

Using an information security council

Security on the street with SearchFinancialSecurity.com: Risk management

Strategic metrics for information security at financial services firms

Metrics don't truly quantify information risk

Rethinking risk management for financial services firms

Outlining governance frameworks

How to make management accountable for risk

RELATED GLOSSARY TERMS

Terms from Whatis.com − the technology online dictionary

corporate governance (SearchFinancialSecurity.com)

subpoena (SearchFinancialSecurity.com)

RELATED RESOURCES

2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems

Search Bitpipe.com for the latest white papers and business webcasts

Whatis.com, the online computer dictionary

rd to standards, methods and production of financial and operational reports and the management of enterprise data. Holmquist also acts as the bank's information security officer with responsibility for oversight of the bank's information security strategy as well as acting as a liaison to the Board of Directors.

Holmquist chairs the operational risk management for IT committee through the Risk Management Association, a nationwide trade group based in Philadelphia focused on sound risk management practices in the global financial services industry. Holmquist is the author of "Risk-Sizing ORM – Scaling Operational Risk Management For The Small To Mid-sized Market", is a contributing author to "Operational Risk 2.0 (2007)" and "The Advanced Measurement Approach to Operational Risk (2006)", both by Incisive Media and writes periodic articles on operational risk management topics for OpRisk & Compliance Magazine

Rate this Tip
To rate tips, you must be a member of SearchFinancialSecurity.com. Register now to start rating these tips. Log in if you are already a member.

DISCLAIMER: Our Tips Exchange is a forum for you to share technical advice and expertise with your peers and to learn from other enterprise IT professionals. TechTarget provides the infrastructure to facilitate this sharing of information. However, we cannot guarantee the accuracy or validity of the material submitted. You agree that your use of the Ask The Expert services and your reliance on any questions, answers, information or other materials received through this Web site is at your own risk.

Finance Sector Security - Anti-Phishing, Remote Access Security, Firewall Systems

SEARCH

TechTarget provides technology professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective purchase decisions and managing their organizations' technology projects - with its network of technology-specific websites, events and online magazines.


TechTarget Corporate Web Site \| Media Kits \| Site Map All Rights Reserved, Copyright 2008 - 2009, TechTarget \| Read our Privacy Policy