I am updating our Security Policy and would like to find one or more sample Security Policies I could use to help me in this process. Also, now that we have an Information Security Policy and a Security Policy, I am somewhat confused as to what should be covered in what policy. There seems to be some crossover between the two.
Can you recommend a good source or template for creation of an e-commerce enabled web hosting contract thatprotects a bank against liability with regards to its customers?
How can bankers develop more effective passwords instead of the usual four characters they're using now?
Are smart cards still considered the wave of the future and what should be doing to prepare for them?
We can take comfort in light of the horrible disaster that occurred on September 11th in the fact there was no panic or hint of shaken faith about the banking industry on the part of the American p
Are there any sources or sample policies and procedures for the written Information Security Program required (or strongly suggested the examiners have already asked about it!) with the GLBA provisions.
Are we required to notify our customers of possible computer intrusions? Where can I find regulatory information regarding intrusions or hacks and the notification of customers?
Information Security Policy
INFORMATION SECURITY PROGRAM
Bank management shall, through an effective Information Security Program (the Program):
How do banks intend to monitor their service providers to confirm that they are maintaining appropriate securitymeasures to safeguard the bank's customer information? We are looking for a practical, reasonable way to do this.