Employees play an integral role in protecting the assets of an institution, and as such, need to be adequately trained and made aware of the basic security practices which are frequently overlooked. A set-it and forget-it approach "we're protected because we have a firewall" to information security ignores end-users,...
Do you see pieces of paper in your organization with usernames or passwords?
Do you see employee desks with customer sensitive files and data lying on them with no one around?
Do you see employee trashcans containing sensitive customer information?
Do you see employees opening an email from someone they don't...
Today, the information security field is not just about technology, it is about people and protecting information wherever it is while still being able to share that information with clients, partners and customers. Considering the security challenges organizations are facing today, more and more employers are...
Here’s a podcast from Information Security Media Group on a hot security topic: Web Applications. Listen as information security expert James Kist answers questions regarding how important web app security is for a financial institution.
James Kist, CISSP, CCSI, CCSE, CCSA, is a senior Information Security...
While technological solutions abound in financial institutions have installed firewalls, intrusion detection systems, robust anti-virus and anti-spyware solutions, and strengthened authentication methods, financial institutions have forgotten security awareness training. One reason? There isn’t a recognizable...
Developing a metrics measurement for your financial institution doesn’t have to be something that is dreaded or feared. Planning a metric program and implementing it to measure the effectiveness of your entire information security program can yield your group and your financial institution unseen benefits.
The original use of the term "firewall" was the description of the brick and mortar wall built in between houses to prevent a fire from spreading from one house to the next.
A computer firewall does basically the same thing, it prevents bad things from entering your computer. A properly installed firewall protects...
RICHARD SWART: Hi. This is Richard Swart, Information Security Media Group, publishers of BankInfoSecurity.com and CUInfoSecurity.com. Today, we’ll be speaking with Mr. Ben Chisolm, recently the Chief Information Security Officer of the United States Treasury. He has 16 years of experience in federal...
A scavenger hunt. A Jeopardy-like trivia game. A well-known guest speaker. A movie about espionage. Some good ideas for your institution’s party? Sure.
But they’re also possibilities in a security awareness training program, according to some experts in the field. “Most people think training has...
The often repeated "Information Security isn't a destination, but a continuous journey," rings true for financial institution's information security professionals. What is taken along on any journey? A map showing where you've been and where you plan to go is usually needed, unless you want to wander aimlessly. In...
Before you launch your information security awareness and training program, did you put any mechanisms in place to measure what your employees think, learn and retain on information security?
To have an effective security training program, you will want to have metrics in place from the beginning. If you don’t...
If it ever happened to you before, you know better than not to perform regular backups on your computer. Now, if you've never had your hard drive wiped out by an attacker or a virus that crashed your system, you will want to take this piece of advice and really think hard - do you want your data to become corrupted...
RICHARD SWART: Good to talk to you today. Could you provide us an overview of what’s happening in cyber security education and research in the United States right now? How good of a job are our universities doing?
DR. EUGENE SPAFFORD: Overall I think we’re not doing very well. We’re...
Listen in to this Information Security Media Group podcast as Dr. Eugene Spafford, Executive Director of Purdue University’s University Center for Education and Research in Information Assurance and Security (CERIAS) shares his views on gaps in cybersecurity education; why lack of attention to security issues...
Feel like you're canned in by the spam emails in your inbox? Don't despair, here are some common sense tips to help stop spam from getting to your email inbox.
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing bankinfosecurity.in, you agree to our use of cookies.