Red Flag Program – do I have to use all 26 Red Flags?
by Russ Horn, CISA, CISSP
Question:
Do I have to incorporate all 26 Red Flags from Supplement A into my Program?
Answer: Not necessarily, the 26 Red Flags listed in Supplement A to Appendix J are only “illustrative examples”. In addition, you are not limited to use only the 26 “example” Red Flags, you can also create your own. If you choose not to use one of the examples, it might be wise to document why. This will be helpful once you begin the examination phase.
CoNetrix specializes in providing information technology consulting and security and compliance services for banks. We offer a wide variety of solutions including IT/GLBA Audit and Assessment, Penetration Testing, Security Policies, Business Continuity Planning, Network Design and Implementation, Security Awareness Training, Information Security Program, and Identity Theft Prevention Program (Red Flag). For additional information, please call (800) 356-6568, e-mail info@conetrix.com or visit us at www.CoNetrix.com.
BankersOnline is a free service made possible by the generous support of our advertisers and sponsors. Advertisers and sponsors are not responsible for site content. Please help us keep BankersOnline FREE to all banking professionals. Support our advertisers and sponsors by clicking through to learn more about their products and services.
Print Friendly!
Email This Article!
Discuss NOW!
