Credit Union Information Security Podcast

Interview with Brian Huntley, VP & ISO, Camden National Bank Just over two years ago, Brian Huntley arrived at Camden National Bank in Maine, charged with responding to regulatory guidance and transforming the bank's information security risk assessment program from one that was threat-based to one that is now asset-based. Listen to this interview for insights on: How Huntley tackled the challenge; The toughest and easiest parts of the project; Accomplishments to date; Tangible results that bank employees and customers now see.

Interview with DLP Expert Jared Thorkelson Data loss prevention (DLP) is a challenge for institutions of all sizes. But not all banking/security leaders understand the scope of the threat, where it originates and how best to eradicate it. In this interview, DLP expert Jared Thorkelson discusses: What's most misunderstood about DLP; The greatest sources of data loss in banking institutions; How institutions of all sizes can take immediate steps to improve DLP

Interview with Kim Matlon, Business Continuity/Crisis Management Expert Workplace violence - it's one of the most common but least understood risks to all businesses. From robberies gone awry to bullies in the workplace to domestic anger spilling over from home, the workplace is rife for violent situations. In this interview, Kim Matlon, COO of R&A Crisis Management Services, an Ill.-based business continuity, crisis management and project management consulting firm, offers insight on: The four types of workplace violence; Red flags to look for in employees and communications; How to help ensure employees' safety.

Annual Security Event Offers Plenty to Financial Institutions Risk management and the insider threat. These are the two dominant themes emerging from the conversations and presentations at the RSA Conference in San Francisco. From the keynote stage to the expo floor, with stops in between at the program sessions, information security experts, vendors and practitioners clearly were influenced by the major headlines of the year: the Societe Generale fraud, Hannaford data breach, anti-money laundering, the regulatory push for better vendor management and pandemic preparation. Listen to this wrap-up for an overview of Information Security Media Group's RSA Conference coverage

Bank of America is well known for its mobile banking services. Currently, the institution has 750,000 mobile banking customers receiving services on 400 different kinds of devices. But did you realize that one of the ways BoA secures its electronic offerings is by providing its customers with abuse reporting capabilities? Listen to this dispatch from editor Tom Field to hear more about BoA's online initiatives, as well as to hear insights from a Fifth Third Bank executive on forensics and e-discovery.

Interviews Shed Light on Topics of Unique Interest to Banking/Security Executives The annual RSA Conference is a showplace for the who's who of security solutions vendors. The event showroom is lined with scores of the industry's leading vendors - no one individual could hope to see them all. So, the Information Security Media Group team did the job for you, visiting with more than 60 vendors of particular interest to banking and security leaders. Click on the following links to listen to our exclusive interviews with these vendors. A - F G - Q R - Z 8e6 TechnologiesDownload MP3 | StreamingActivIdentityDownload MP3 | StreamingAdobeDownload MP3 | StreamingAirDefenseDownload MP3 | StreamingAlgoSecDownload MP3 | StreamingApplication SecurityDownload MP3 | StreamingArcSightDownload MP3 | StreamingAxedaDownload MP3 | StreamingBeyond TrustDownload MP3 | StreamingBioPasswordDownload MP3 | StreamingBlue Coat SystemsDownload MP3 | StreamingBrabeionDownload MP3 | StreamingBreach Se

Imagine living in a country where electronic voting is universal, there are 39 million Internet users, and 25 million of them are also Internet banking users. Welcome to Brazil, whose online banking services and lessons-learned were presented to attendees at the RSA Conference on Tuesday. According to Maria Aarao of security vendor Certisign Certificadora Digital, Brazilian banks benefit from a country where Internet usage is high and the government actively supports electronic services - and security. Brazilians vote and pay their income taxes online, and the Internet banking marketplace has existed since 1995. Among the most common services used by commercial and consumer customers today: Real-time money transfer; Bill pay; Tax payment; Social security payments.

Interview with AML Investigator Kevin Sullivan From Second Life to former NY Gov. Eliot Spitzer, anti-money laundering has dominated the news in 2008. To gain new insights in the latest trends, threats and solutions, we interviewed veteran AML investigator Kevin Sullivan on: What's new in BSA compliance; How AML has evolved over the past decade; What's most misunderstood about AML by financial institutions. Webinar - BSA Compliance: How to Conduct an Anti-Money Laundering Investigation

Interview With Emergency Management Expert Regina Phelps Of all the major areas of business continuity/disaster recovery, pandemic preparation is where financial institutions say they've done the least work. And yet it is the major focus of banking regulators, which in 2008 expect institutions to step up their pandemic preparation efforts. In this interview, Regina Phelps, founder of Emergency Management & Safety Solutions, shares insights on: How financial institutions stack up against other industries in terms of pandemic preparation; Where institutions are most prepared; Where they are least prepared; Other elements of business continuity/disaster recovery that need attention now.

Interview with Mark Bernard of Credit Union Central of British Columbia We first met Mark Bernard last fall. The Security & Privacy Officer at Credit Union Central of British Columbia, Mark discussed risk management and the process of becoming ISO 27001 Certified. Today, Mark's credit union is the first financial institution to achieve ISO 27001 certification. Listen to this interview for his insights on: What it means to be ISO 27001 certified; How the institution has changed as a result; Potential payoffs for your institution if you follow this same path.

Interview with Banking Attorney Charlotte Bahin With the Identity Theft Red Flags deadline looming large, many financial institutions are scrambling to create or beef up their customer awareness programs. Listen to this interview for insights from banking attorney Charlotte Bahin on: What banking institutions are doing for customer awareness - and what they should be doing; Key ingredients of a successful awareness program; Traps to avoid.

Interview with Anthony Aiello of TD Commerce Bank Anti-money laundering, the Bank Secrecy Act, Suspicious Activity Reports - these were arcane terms to many people ... until the Eliot Spitzer scandal came along and made them into household topics. In this interview, Anthony Aiello, Vice President of Private Banking at TD Commerce Bank in New York, talks about the publicity generated by the Spitzer investigation - the benefits and drawbacks - as well as other key anti-money laundering topics, including: What is most misunderstood about anti-money laundering; The biggest challenges in these investigations; Key takeaways from his upcoming webinar, Anti-Money Laundering: BSA Risk Assessment > View details about Anthony Aiello's webinar "Anti-Money Laundering: BSA Risk Assessment"

Security Strategies from Lee Rothman of MessageLabs With the heightened demands of regulatory compliance and e-discovery, managed message security and archiving is a huge challenge for financial institutions. Listen to this interview for expert advice from Lee Rothman, Sales Engineer at MessageLabs Inc., on archiving, including: Today's top challenges; How other institutions are tackling these challenges; Practical advice you can implement today.

Interview with Philip Alexander, Information Security Officer Offshore outsourcing - it's a topic that stirs great debate among banking/security leaders. Proponents tout the potential cost-savings and easy access to top talent. Opponents point to cultural, infrastructural and, yes, security concerns inherent in offshore partnerships. Listen to this interview for insights from Philip Alexander, information security officer at a major financial institution - and an offshore outsourcing veteran. In a preview of his new webinar, Offshore Outsourcing: Do You Know Where Your Data is and How it's Managed?, Alexander discusses: Benefits of offshoring; Unique challenges; Advice to banking/security leaders venturing offshore for the first time.

MaryAnne MacIntosh of Nu Union Credit Union Discusses Her Growing Initiative Security awareness is a key topic - for financial institution employees and customers alike. At Nu Union Credit Union in Lansing, Mich., MaryAnne MacIntosh oversees a program that educates everyone from the board of directors to customer service reps. And her program has not only changed the security environment within the credit union branches, but also has altered how employees approach security in their private lives. Listen to this podcast for insights on: How she created this program; Elements of security awareness; Challenges in delivering the training; What's next?

It was the scandal that rocked the banking world. French Bank Societe Generale recently revealed details of a disaster created by a rogue insider who cost the institution $7.2 billion in fraudulent trades. It was the biggest such scandal in history. We recently spoke with Linda Najim and Jason Gaswirth of Diamond Management & Technology Consultants, authors of a new report, "Notes on a Scandal: Lessons in Operational Risk Management from Societe Generale." Listen to this interview for insights on: How Soc Gen happened; Why it can happen again; How the fraud could have been prevented; Actions institutions can take to prevent such crimes in the future.

It's never easy arising from security or technology to become a business leader in a financial institution. In this exclusive interview, Paul Perini - who came to security from the business side - offers practical insight on: The qualities an information security leader needs to possess in order to be a successful business leader; How to avoid getting sucked into the IT weeds; The skills one needs to develop in a business-focused security organization; How to groom an IT or security team to be more strategic.

The insider threat is at the forefront of financial institution concerns these days, and a huge part of mitigating that threat is improving identity and access management. Listen to this interview to hear Subhash Tantry, CEO of Fox Technologies, on: Five principles of an effective access control management program; How these principles also help with IT audits and regulatory compliance; Future trends in identity and access management.

Banking/Security Expert Shares Insights on Red Flags, Vendor Management, Other Key Challenges Facing Institutions He was the world's first Chief Information Security Officer at Citigroup in 1995, and for over 25 years he has been a true banking/security leader. Stephen Katz, founder and President of Security Risk Solutions, an information security company providing consulting and advisory services, sat down with Editor Tom Field to discuss the major issues facing banking institutions in 2008. Listen to this interview to hear his insights on: ID Theft Red Flags - are institutions giving it enough attention? Vendor Management - the need to improve oversight of vendors and their vendors; Governance - what works, what still needs work; Pandemic preparation; Many other top issues.

Debit card fraud is one of the most prevalent security threats against banking institutions and customers alike. In this interview, Daniel McIntyre, information security and business recovery analyst with Superior Bank of Birmingham, AL., shares his insight on: The magnitude of the debit card threat; Strategies for fighting fraud; Effective ways to educate consumers.