
	Home > Financial Services Information Security Tips > Compliance and Governance Digest > Information security governance using a risk-based approach

Financial Security Tips:

EMAIL THIS

TIPS & NEWSLETTERS TOPICS

COMPLIANCE AND GOVERNANCE DIGEST

Information security governance using a risk-based approach

Eric Holmquist, Contributor
11.04.2008
Rating: --- (out of 5)

Digg This!

StumbleUpon

Del.icio.us

More than ever information security in financial services requires a thorough combination of governance elements, including policies, procedures, technology and, most importantly, training and awareness. In this session, Eric Holmquist explores the key elements of sound information security governance and how to successfully manage and coordinate all of the complex and important elements.

Download this presentation to learn how to:

Design an effective governance structure
Manage to more than just regulatory compliance
Create effective control and monitoring elements

>> Download this presentation

About the presenter:
Eric Holmquist is the Vice President and Director of Operational Risk at Advanta Bank. Eric has over 25 years experience in the financial services industry and is a frequent industry author and speaker. He is responsible for the development and oversight of the bank's opera...

Digg This!

StumbleUpon

Del.icio.us

RELATED CONTENT

	Compliance and Governance Digest
	Seven GRC best practices for information security
	Shifting to a flexible information security framework
	Vendor contract management: Regulatory guidance is risk-based
	Vendor audit and monitoring contractual rights
	Data breach protection: Implementing vendor breach safeguards
	How to manage security risks in vendor contracts
	Red Flags Rule and preparing for new regulations
	Companies lagging in PA DSS compliance
	Social media: Risk management strategies for financial institutions
	FFIEC guidance on RDC: Guidance overview

Compliance best practices

Regulators issue standardized privacy notice form for GLBA compliance

Seven GRC best practices for information security

Keeping up with state data protection laws

Five mistakes banks make in pandemic planning

Get ready for remote deposit capture risk management scrutiny

Google ordered to deactivate Gmail account after bank email error

Vendor risk management: process and documentation

How to manage security risks in vendor contracts

How to streamline role-based access control

Five considerations for choosing network access control products

Risk management frameworks, metrics and strategy

Vendor risk management: process and documentation

How to manage security risks in vendor contracts

Controls monitoring helps with governance, risk and compliance

An advancement in GRC

Advocacy group looks to foster trust in foreign service providers

Using an information security council

Security on the street with SearchFinancialSecurity.com: Risk management

Strategic metrics for information security at financial services firms

Metrics don't truly quantify information risk

Financial Information Security Decisions 2008: Presentation downloads

RELATED GLOSSARY TERMS

Terms from Whatis.com − the technology online dictionary

corporate governance (SearchFinancialSecurity.com)

subpoena (SearchFinancialSecurity.com)

RELATED RESOURCES

2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems

Search Bitpipe.com for the latest white papers and business webcasts

Whatis.com, the online computer dictionary

tional risk management program. In addition, Holmquist chairs the bank's MIS Council, an oversight group that provides governance with regard to standards, methods and production of financial and operational reports and the management of enterprise data. Holmquist also acts as the bank's information security officer with responsibility for oversight of the bank's information security strategy as well as acting as a liaison to the Board of Directors.

Holmquist chairs the operational risk management for IT committee through the Risk Management Association, a nationwide trade group based in Philadelphia focused on sound risk management practices in the global financial services industry. Holmquist is the author of "Risk-Sizing ORM – Scaling Operational Risk Management For The Small To Mid-sized Market", is a contributing author to "Operational Risk 2.0 (2007)" and "The Advanced Measurement Approach to Operational Risk (2006)", both by Incisive Media and writes periodic articles on operational risk management topics for OpRisk & Compliance Magazine

Rate this Tip
To rate tips, you must be a member of SearchFinancialSecurity.com. Register now to start rating these tips. Log in if you are already a member.

DISCLAIMER: Our Tips Exchange is a forum for you to share technical advice and expertise with your peers and to learn from other enterprise IT professionals. TechTarget provides the infrastructure to facilitate this sharing of information. However, we cannot guarantee the accuracy or validity of the material submitted. You agree that your use of the Ask The Expert services and your reliance on any questions, answers, information or other materials received through this Web site is at your own risk.

Finance Sector Security - Anti-Phishing, Remote Access Security, Firewall Systems

SEARCH

TechTarget provides technology professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective purchase decisions and managing their organizations' technology projects - with its network of technology-specific websites, events and online magazines.


TechTarget Corporate Web Site \| Media Kits \| Site Map All Rights Reserved, Copyright 2008 - 2009, TechTarget \| Read our Privacy Policy