Financial Services Industry
Industry: Email Alert RSS FeedInteragency guidance on identifying information security risks - Announcements
Federal Reserve Bulletin, March, 2003
The Federal Financial Institutions Examination Council (FFIEC) on January 29, 2003, issued revised guidance for examiners and financial institutions to use in identifying information security risks and evaluating the adequacy of controls and applicable risk-management practices of financial institutions.
The safety and soundness of the federal financial industry and the privacy of customer information depend on the security practices of banks, thrift institutions, and credit unions. The Information Security booklet describes how an institution should protect and secure the systems and facilities that process and maintain information. The booklet calls for financial institutions and technology service providers (TSPs) to maintain effective security programs, tailored to the complexity of their operations.
Most PopularCBS MoneyWatch.com Articles
This guidance is the first in a series of updates to the 1996 FFIEC Information Systems (IS) Examination Handbook. These updates will address significant changes in technology since 1996 and incorporate a risk-based examination approach.
The FFIEC currently plans to issue the updates in separate booklets that will ultimately replace all chapters of the 1996 handbook and make up the new FFIEC Information Technology (IT) Examination Handbook. In addition to the booklet on information security, future booklets will address business continuity planning, supervision of technology service providers, electronic banking, IT audit, payment systems, outsourcing, IT management, computer operations, and systems development and acquisition.
The FFIEC agencies plan to distribute these booklets electronically to financial institutions and TSPs. The documents will be available on the Internet through the FFIEC's InfoBase application. InfoBase will include each booklet in Adobe Acrobat PDF file format, as well as an on-line version with links to various resource materials, and an orientation to the handbook update process.
The electronic version of the Information Security booklet is available at www.ffiec.gov/guides.htm.> The FFIEC is composed of the five federal financial regulators: the Board of Governors of the Federal Reserve System, the Federal Deposit Insurance Corporation, the National Credit Union Administration, the Office of the Comptroller of the Currency, and the Office of Thrift Supervision.
- How to choose the right insurance carrier for your business
- Real Estate: Prepare your properties to weather what lies ahead
- Technology: Be prepared if part of your global supply chain goes missing
Most Recent Business Articles
- Multiple criteria evaluation and optimization of transportation systems
- Multi-criteria analysis procedure for sustainable mobility evaluation in urban areas
- A two-leveled multi-objective symbiotic evolutionary algorithm for the hub and spoke location problem
- Multi-criteria analysis for evaluating the impacts of intelligent speed adaptation
- The development of Taiwan arterial traffic-adaptive signal control system and its field test: a Taiwan experience
Most Recent Business Publications
Most Popular Business Articles
- 7 tips for effective listening: productive listening does not occur naturally. It requires hard work and practice - Back To Basics - effective listening is a crucial skill for internal auditors
- FAS 109: a primer for non-accountants - Financial Accounting Standards Board's "Statement 109: Accounting for Income Taxes"
- LIFO vs. FIFO: a return to the basics
- Too Young to Rent a Car? - 25-years-old the minimum age for car renting - Brief Article
- Design a commission plan that drives sales - Sales Commissions
Most Popular Business Publications
Content provided in partnership with
