Banking Information Security Podcast

Interview with James Chessen, Chief Economist for the American Bankers Association It's a frantic, historic time for banking institutions of all sizes, with mergers, acquisitions, failures and federal investment. In an exclusive interview, James Chessen, Chief Economist for the American Bankers Association, speaks about the state of customer confidence at banking institutions, detailing: The top questions banks are receiving from their customers - and the answers they're offering; Ways banking institutions can proactively instill greater confidence; Business priorities for banking leaders heading into 2009. James Chessen is the Chief Economist and Group Director for the American Bankers Association. In this capacity, he oversees two departments: Economic & Policy Research which monitors the financial performance and condition of the banking industry and studies legislative and regulatory issues as they pertain to the banking industry and the Surveys & Statistics group that collects, compiles and

Interview with David Richards, President of the Institute of Internal Auditors Internal auditing has always been a key function within financial systems, and it becomes even more so when it comes to IT and information security. In this exclusive interview, David Richards, President of the Institute of Internal Auditors (IIA), discusses: The key differences between internal and IT auditors; The role of the audit committee and board of directors - what they need to know about IT governance; Frameworks to consider when establishing IT governance in your institution.

The headlines have been made in Washington, D.C., but what's happening in the heartland? Community banks make up more than 90 percent of the nation's 8000-plus banking institutions, and it's important to hear from their senior leaders on such topics as safety and soundness, customer confidence and business/security objectives for 2009. In this exclusive interview, Michael Jacobson, CEO of NebraskaLand National Bank and chair-elect of the Nebraska Bankers Association, discusses the key differences between Wall Street and Main Street, offering insight on: The impact of global economic events on his institution and customers; How community banks such as his are dealing with the customer confidence challenge; The immediate business, regulatory and risk management priorities for Main Street institutions.

Insights on the Federal Rescue Plan - an Interview with Guillermo Kopp of TowerGroup Tuesday's news was mainly about Wall Street, with the U.S. government pledging to invest up to $125 billion in nine of the nation's largest banks. But Main Street banking institutions and their customers will be the ultimate beneficiaries of this financial boost, says one industry analyst. "It's all about restoring confidence in the banking system," says Guillermo Kopp, Executive Director and Global Research Fellow at TowerGroup, the Boston-based financial services research and advisory firm. "This is an interdependent system, and it's important to ensure that banks don't hurt, because they sustain the economy." In an exclusive interview, Kopp discusses what this investment truly means to the banking industry, sharing insight on: Ways financial services organizations of all sizes will benefit from government investment; How banking institutions can step up and reinforce customer confidence; Immediate business priorit

Interview with Nancy Atkinson of Aite Group Market crashes, bank closures, history in the making. Today's news is filled with troubling symptoms of the global credit crunch. Yet, despite this economic crisis, regulatory compliance and risk management remain top priorities of banking institutions. In this exclusive interview, Nancy Atkinson, senior analyst at Aite Group LLC, a Boston-based financial services consultancy, discusses the state of the banking industry, including: The ramifications of economic conditions on institutions from Wall Street and Main Street; How banking institutions can reinforce customer confidence; Current spending priorities and where compliance and security fit in.

Interview With Dan Clements, President of Card Cops We all know the bad guys are getting smarter, more organized and better fortified. But so are the good guys. In this exclusive interview, Dan Clements, President of Card Cops (www.cardcops.com), a data security company, discusses how his group helps financial institutions and consumers: Recover compromised credit/debit card data; Understand the greatest risks to their private information; Take protective measures to secure their financial and informational assets.

Interview with Steve Neville, Director of Identity Solutions, Entrust Online fraud is a crime that's ever-growing and whose face is ever-changing. And yet banking institutions are levering new strategies and solutions to face the threat. In this exclusive interview, Steve Neville, Director of Identity Solutions at Entrust, discusses: Current fraud trends and how they impact banking institution; Ways banks are fighting fraud while safeguarding customer information and ensuring regulatory compliance; Advice for institutions just now preparing to tackle online fraud full-force.

Leading Technology Vendor Discusses the Need for Vulnerability Assessments & Remediation Processes for Applications Whether Developed In-House or By a Third-Party Application security is a key focus of regulatory agencies - ensuring that financial institutions pay as much attention to third-party applications as they do to those they develop and manage in-house. In a recent survey conducted by Information Security Media Group, respondents say they are more confident in their own applications vs. those developed by third-party service providers ... yet, they really don't demonstrate vulnerability assessment or remediation processes to justify any level of confidence. In this exclusive interview, Roger Thornton, founder and CTO of Fortify Software, discusses the survey results and his own market perspective, discussing: How the survey results jibe with what he sees from customers; What's beneath the disconnect between confidence and processes? What are some of the proactive, cost-effective ways compa

Interview with Matt Bishop, Professor of Computer Science, UC-Davis Career opportunities abound for people interested in entering information security as an entry-level or mid-career position. In this exclusive interview, Matt Bishop, Professor of Computer Science at UC-Davis, discusses: His current projects, including vulnerability analysis and the insider threat; Opportunities for information security students; Advice for individuals looking to enter the field.

Interview With AML Expert Ross Delston Anti-money laundering has been one of the dominant stories in financial services this year, and the trend isn't likely to abate anytime soon. In this exclusive interview, attorney and AML expert Ross Delston discusses: The latest AML trends, including Trade-Based Money Laundering; How institutions are fighting back; Career opportunities for security professionals looking to pull the plug on money launderers.

Interview With Crime/Security Expert Dana Turner Resource allocation - the people, places and things - is one of the most overlooked aspects of Business Continuity planning. In this exclusive interview, crime and information security expert Dana Turner offers insights on: What resource allocation truly means for financial institutions; Unique challenges depending on size of institution and type of disaster; Main takeaways from a new webinar on just this topic.

Interview with Jennifer Bayuk, Former CISO at Bear Stearns & Co. Governance is a term increasingly used in financial institutions, as banking/security leaders try to introduce new processes and disciplines to their organizations. In this exclusive interview, Jennifer Bayuk, an information security specialist and former CISO at Bear Stearns & Co., discusses: What governance means to a security organization; Elements of good governance; Speedbumps en route to success; Potential short- and long-terms rewards of good governance.

To quote from his own biography, Eugene H. Spafford is one of the most senior and recognized leaders in the field of computing. He has an on-going record of accomplishment as a senior advisor and consultant on issues of security and intelligence, education, cybercrime and computing policy to a number of major companies, law enforcement organizations, academic and government agencies, including two Presidents of the United States. In this exclusive interview, Spafford discusses: The state of information security education today; The communication gap between businesses who need security professionals and schools that educate them; Trends in information security education.

Interview with Brent Rickles, SVP, First National Bank of Bosque County, on Securing Financial Data and Systems Through Application Whitelisting "Whitelisting" is a new twist on information security. Instead of trying to find a software solution that keeps all of the potential bad guys out of your systems, whitelisting allows you to establish a protection layer that grants access to only your finite list of good guys - individuals or applications. In this exclusive interview sponsored by Lumension Security, Brent Rickles, SVP of First National Bank of Bosque County, Texas, discusses: What led him to a whitelisting security solution; The quantifiable results he's seen since deploying the solution; Reaction he's received from bank examiners since taking this approach.

Interview with Cyber Crime Expert Eric Fiterman In the wake of the arrests of 11 hackers tied to the TJX data breach, security experts everywhere are warning of bigger, bolder threats to come. So, what should banking institutions have learned from TJX-style breaches, and what can they do now to protect their customers and critical financial/informational assets? In this interview, former FBI agent Eric Fiterman, founder of Methodvue, offers: Insights on the TJX and other breach investigations; How banking institutions can better protect their assets; The types of crimes institutions need to look out for in the months ahead.

Interview with William Henley, Director at the Office of Thrift Supervision The downturn in the U.S. economy has financial institutions challenged to "do more with less." While the focus continues to be on the mortgage crisis, William Henley, Director, IT Risk Management for the Office of Thrift Supervision, discusses the need for continued investment in: Information security; Regulatory compliance; Customer confidence.

Interview with Tom Field, Editorial Director at Information Security Media Group As Nov. 1 looms, Identity Theft Red Flags Rule compliance is an absolute must for financial institutions. Information Security Media Group recently surveyed 300 banking and credit union leaders to gauge their progress toward compliance. The results have proven intriguing, even surprising. In this interview, Information Security Media Group Editorial Director Tom Field provides: Overview of the findings; Analysis of what they mean; Insight into challenges banking institutions face before and after Nov. 1.

Interview with Nathan Johns of Crowe Chizek and Company Gramm-Leach-Bliley - it's at the heart of every financial institution's security program. In this exclusive interview, Nathan Johns, formerly of the FDIC, discusses current GLBA compliance trends, including: Where institutions are most challenged to meet compliance; Where they are seeing successes; Vendor management; How a risk-based approach helps to maximize scant resources.

Excerpt of a Q&A with William Henley of OTS and Jeff Kopchik of FDIC In conjunction with the recent Identity Theft Red Flags Rule Roundtable webinar, we conducted an interview session with William Henley of OTS and Jeff Kopchik of FDIC. Topics ranged from: What should institutions expect on Nov. 1? What have been the biggest compliance challenges? What should institutions pay most attention to re: Identity Theft Red Flags? This is an excerpt of that Q&A session. To hear the entire dialogue, please register for the Identity Theft Red Flags Rule webinar, which also features practitioners' perspectives on compliance, as well as our own new survey results on where banking institutions stand in their efforts to meet the Nov. 1 compliance deadline.

How to Put the "Business" back into Business Continuity Planning Planning for disaster - whether a simple service disruption or a pandemic event - is paramount to any financial institution. But where does the responsibility fall? Roger Batsel, SVP, Managing Director of Information Systems at Republic Bank, Louisville, KY., says it's time to separate duties: let IT handle system outages and put business continuity planning in the hands of the business folks. In this exclusive interview, Batsel discusses the positive impact this novel approach has had on his bank.