When I started this job a year ago and reached out to banking/security leaders, the overwhelming message I got was "Security awareness - we don't do it well."
For banking institution employees, maybe there was an information security training seminar when they first started. Or an occasional workshop on identity...
Governance is a term increasingly used in financial institutions, as banking/security leaders try to introduce new processes and disciplines to their organizations.
In this exclusive interview, Jennifer Bayuk, an information security specialist and former CISO at Bear Stearns & Co., discusses:
What governance...
Interview with Matt Bishop, Professor of Computer Science, UC-Davis
Career opportunities abound for people interested in entering information security as an entry-level or mid-career position.
In this exclusive interview, Matt Bishop, Professor of Computer Science at UC-Davis, discusses:
His current...
Interview with Jennifer Bayuk, Former CISO at Bear Stearns & Co.
Governance is a term increasingly used in financial institutions, as banking/security leaders try to introduce new processes and disciplines to their organizations.
In this exclusive interview, Jennifer Bayuk, an information security specialist...
Brian Dean is Senior Vice President in the Privacy Department at Ohio-based Key Bank with assets under management of approximately $102 billion. A privacy professional for over eight years, Dean has long worked with Key management to begin the convergence journey. He refined this vision as an adjunct professor at a...
Information Security Media Group (ISMG), publisher of BankInfoSecurity.com and CUInfosecurity.com, recently posed a few questions to Debbie Wheeler, Chief Information Security Officer for Fifth Third Bancorp headquartered in Cincinnati, Ohio with approximately $111 billion in assets under management. In her current...
To quote from his own biography, Eugene H. Spafford is one of the most senior and recognized leaders in the field of computing. He has an on-going record of accomplishment as a senior advisor and consultant on issues of security and intelligence, education, cybercrime and computing policy to a number of major...
BASICS
What is the CISSP?
The Certified Information Systems Security Professional (CISSP) certification is a broad exam, yet fairly balanced in its coverage of security topics. If you are responsible for maintaining IT security in your organization, this is an excellent exam to strengthen and expand your...
Stephen Northcutt, CEO of the SANS Technology Institute and an acknowledged expert in training and certification, addresses the role of certification and the state of education within Information Security.
Q: What is the role of certification in information security?
Northcutt: Certification means that someone...
When most people hear "Social Engineering," they think of the criminal aspects of the term. But the practice also has professional applications for security practitioners who want to help test and improve organizations' security practices.
Social Engineering is the act of gaining unauthorized access to systems or...
John Pironti, chief information risk strategist with Getronics, shares his insight on leading edge risk management practices for information security & banking professionals. His tips include:
Focus on Basic Principles
As we start looking at risk management and more specifically information risk management, which...
Institutions of all sizes struggle with staffing resources - having enough hands available to tend to information security matters. At America First Credit Union in Riverdale, Utah, Lane Gittins, the Systems Security Manager, has learned to overcome this challenge by working in a consultative style - directing a...
Mark Bernard is the Security & Privacy Officer at Credit Union Central of British Columbia. Today, Mark's credit union is the first financial institution to achieve ISO 27001 certification. Mark discusses ISO 27001 certification and its benefits with BankInfoSecurity.
Background: ISO 27001 is an information security...
Planning for disaster - whether a simple service disruption or a pandemic event - is paramount to any financial institution. But where does the responsibility fall?
Roger Batsel, SVP, Managing Director of Information Systems at Republic Bank, Louisville, KY., says it's time to separate duties: Let IT handle system...
The clear message from banking regulators in their Senate testimony is: Banks are hurting.
The follow-up question is: Exactly how badly are they hurting, and how will their pain trickle down to impact information security programs and priorities?
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing careersinfosecurity.asia, you agree to our use of cookies.