Risk management frameworks, metrics and strategy

EXPERT TECHNICAL ADVICE: 1 - 3 of 9

	Vendor risk management: process and documentation Submitted By: SearchFinancialSecurity.com | 09 Sep 2009 TIP - As part of the vendor risk management process, regulators expect information security officers will document vendor relationships and have proper vendor documentation.

	Using an information security council Submitted By: SearchFinancialSecurity.com | 11 Nov 2008 TIP - Getting cross-discipline cooperation for company-wide, security policies is a challenge many financial firms face. Eric Holmquist suggests creating an information security council.

	Information security governance using a risk-based approach Submitted By: SearchFinancialSecurity.com | 04 Nov 2008 TIP - In this presentation from Financial Information Security Decisions, Eric Holmquist explores the key elements of sound information security governance.

	VIEW ALL EXPERT TECHNICAL ADVICE ON RISK MANAGEMENT FRAMEWORKS, METRICS AND STRATEGY

NEWS: 1 - 3 of 5

	Controls monitoring helps with governance, risk and compliance SearchFinancialSecurity.com | 21 May 2009 ARTICLE - Gartner says continuous controls monitoring for transactions is a GRC technology that promises to reduce compliance costs and improve financial governance.

	Advocacy group looks to foster trust in foreign service providers SearchFinancialSecurity.com | 23 Apr 2009 ARTICLE - An agreement with two Indian technology organizations expands the BITS program, with the goal of fostering trust in the security controls of international service providers.

	Metrics don't truly quantify information risk SearchFinancialSecurity.com | 09.16.2008 OPINION - Mike Rothman explains his point of view on why metrics programs need to evolve from trying to truly quantify information risk to something that actually works.

	VIEW ALL NEWS ON RISK MANAGEMENT FRAMEWORKS, METRICS AND STRATEGY

REFERENCE & LEARNING: 1 - 3 of 3

	How to manage security risks in vendor contracts SearchFinancialSecurity.com | 09 Sep 2009 LEARNING GUIDE - Learn what financial firms need to include in their vendor contracts in order to conform with regulatory guidance and industry best practices for vendor risk management.

	Risk management guide for information security groups in the financial sector 17 Nov 2008 LEARNING GUIDES - This guide provides expert advice, articles and tips so you can keep your financial business on track under the worst of circumstances.

	Financial Information Security Decisions 2008: Presentation downloads 23 Jun 2008 CONFERENCE SUPPLEMENT - Download a number of the fascinating presentations from the 2008 Financial Information Security Decisions conference.

	VIEW ALL REFERENCE & LEARNING ON RISK MANAGEMENT FRAMEWORKS, METRICS AND STRATEGY

DEFINITIONS: 1 - 1 of 1

	Red Flags Rule (RFR) 18 Nov 2009 WORD - The Red Flags Rule (RFR) is a set of United States federal regulations that require certain businesses and organizations to develop and implement documented plans to protect consumers from identity theft. Any creditor or ...

	VIEW ALL DEFINITIONS ON RISK MANAGEMENT FRAMEWORKS, METRICS AND STRATEGY

SEE ALSO - Topics Related to Risk management frameworks, metrics and strategy:  Electronic data discovery compliance, FACTA law requirements, SEC and FDIC regulations, GLBA compliance requirements, State data security breach laws, FFIEC compliance guidelines, SOX financial reporting compliance, Auditing, testing and assessment for financial services compliance, Basel II regulatory compliance and requirements, Compliance best practices, HIPAA: Laws and guidelines, PCI DSS: Audits and requirements, Bank Secrecy Act compliance and anti-money laundering training