Information Security Under Overall Security

Answered by:

Question:

Is an institution better served by having Information Security as part of the bank's overall security program or for it to be managed through the CIO (separately or combined)?

Answer:

There is no one size fits all answer. There are variables as to the skillsets of your personnel, the size of your institution, the complexity of each department, etc. The CIO may have other duties is also not always the best to oversee Security. That often falls on the COO.

The important issue is how will each arrangement work for your bank? Choose the best fit and recognize there is always crossover in duties.

First published on BankersOnline.com 10/3/11

Information Security Under Overall Security

Related Q&As

Red Flag Program as Part of Information Security Program

About a Separate Identity Theft Prevention Program

Man-in-the-Browser

Related Tools View All

Privacy Police Tools

Clean Desk Policy & Privacy Citation and Commendation

Information Security Access Assessment

OFAC Updates View All

Sanctions List Search

Specially Designated Nationals List (SDN)

Sanctions Programs and Information

Search Topics