GRC for financial firms: The latest threats

Home
Topics
Security management strategies
Threat prevention in financial institutions
GRC for financial firms: The latest threats

GRC for financial firms: The latest threats

GRC for financial firms: The latest threats

Date: Dec 03, 2009

Information security pros in the financial industries must stay up to date on the latest threats if they want to keep sensitive data secure and meet regulatory compliance requirements. In this video, expert Eric Holmquist explains what to look out for in the current threat landscape, including Automated Clearing House (ACH) fraud. He also discusses pandemic planning and how tabletop exercises are critical for successful disaster recovery planning.

About the speaker:
Eric Holmquist is president of Holmquist Advisory and former vice president of Advanta Bank Corp.

More on Threat prevention in financial institutions

Malware and email authentication in financial services
VIDEO - Malware and fighting phishing with email authentication are major security topics for financial services firms. In part two of this video, Paul Smocer discusses the threats and mitigation options.
Ramnit worm variant now dangerous banking malware
News - The Ramnit worm now supports man-in-the-middle attacks, giving cybercriminals the ability to drain a victim’s bank account.
( Aug 25, 2011 )
OddJob Trojan: Different from other online security banking threats?
Answer - What particular risks does the OddJob Trojan pose to the security of financial transactions over the Web? Expert Nick Lewis explains.
The final frontier: bank check security
News - In his latest blog post, David Schneier writes that the banking industry needs to take action to protect account numbers and other sensitive information printed on bank checks.
( Dec 01, 2009 | Regulatory Reality blog )
Threat of insider fraud growing with bad economy
News - Actimize survey shows financial institutions see insider fraud threat growing as economic recession puts pressure on employees
( Sep 23, 2009 )
PCI DSS (Payment Card Industry Data Security Standard )
Definition - The Payment Card Industry Data Security Standard (PCI DSS) is a widely accepted set of policies and procedures intended to optimize the security of credit, debit and cash card transactions and protect cardholders against misuse of their personal information... (Continued)

Back to top

More from Related TechTarget Sites

Security
Cloud Security
Security Channel
Security UK
SMB Security
CIO

Security
- Intrusion detection and prevention: IDS/IPS security guide
  
  This guide is a compilation of SearchSecurity.com's best resources on intrusion detection and prevention. It covers not only the basics of what they are and how they work, but also discusses several other important areas of IDS and IPS security, including IDS/IPS tools, such as Snort, implementation and deployment and wireless intrusion prevention systems (WIPS).
- Praise, criticism for retiring cybersecurity coordinator Howard Schmidt
  
  Security experts say some issues haven’t been adequately addressed by the White House security chief.
- PCI Council urges P2P encryption for mobile payments
  
  A PCI Council guidance document requires merchants to use a validated PIN entry device or secure card reader to accept payments using mobile devices.
Cloud Security
- Leveraging Microsoft Azure security features for PaaS security
  
  Organizations can boost PaaS security late in the game by implementing these stopgap measures.
- Quiz: Understanding cloud-specific security technologies
  
  Think you understand cloud-specific security technologies as well as expert Joseph Granneman does? Test your knowledge with this quiz.
- CSA launches cloud security certification initiative for service providers
  
  Plan calls for working with certification bodies, government agencies, as well as an independent CSA certification.
Security Channel
- Biometric authentication methods: Comparing smartphone biometrics
  
  Biometric authentication helps ensure only authorized smartphone users can access a network. David Jacobs weighs the pros and cons of three methods.
- F5 Vault program embraces incentives for F5 firewall, security sales
  
  The Vault partner program uses incentives to increase visibility for F5 firewalls and its architecture bundle.
- Using DMARC to improve DKIM and SPF email antispam effectiveness
  
  DMARC aids the DKIM and SPF protocols that help keep spam out and let legitimate emails in. David Jacobs explains how.
Security UK
- File upload security best practices: Block a malicious file upload
  
  Do your Web app users upload files to your servers? Find out the dangers of malicious file uploads and learn six steps to stop file-upload attacks.
- MDM, security vendors scramble to address BYOD security issues
  
  Organisations are looking beyond NAC and MDM to resolve BYOD security issues; MDM, security and hybrid vendors are responding with new products.
- ICO fines Welsh health board £70,000 for patient record loss
  
  For the first time, the ICO fines an NHS organisation for sending patient data to the wrong person.
searchMidmarketSecurity
- Windows Phone 7 security: Assessing WP7 security features
  
  Windows Phone 7 security features are proving to be a mixed bag. Sam Cattle assesses the enterprise security pros and cons of the latest Windows mobile platform.
- Choosing the best security certifications for your career
  
  Whether starting your career or planning your next step as an IT security professional, this tip will guide you toward the best certifications for your interests and experience.
- Midmarket security tutorials
  
  SearchMidmarketSecurity.com’s tutorials offer IT professionals in-depth lessons and technical advice on the hottest topics in the midmarket IT security industry. Through our tutorials we seek to provide site members with the foundational knowledge needed to deal with the increasingly challenging job of keeping their organizations secure.
CIO
- Ezine Download: Shared Services
  
  Shared services has become a hot topic due to promises of virtualization, cloud computing and centralized IT. Discover how a shared services strategy can benefit your organization.
- To gain a competitive advantage with mobile, CIO readiness is all
  
  Gaining a competitive advantage with mobile is no easy feat for a statewide bank. Getting an early jump made the difference for one CIO.
- IT Leadership Awards finalists driven by business-value creation
  
  SearchCIO-Midmarket.com IT Leadership Awards judge Harvey Koeppel discusses his renewed belief that business and IT are aligning.

All Rights Reserved, Copyright 2008 - 2012, TechTarget