Information Security
Monitoring
ActionPack
The Information Security Monitoring ActionPack is used by financial
institutions to manage vital information security monitoring
procedures, document associated control measures, and delegate proper
procedures to the appropriate personnel including contractors. The
ActionPack supports GLBA monitoring requirements. Here are ActionPack
highlights:
- Manages and tracks
routine security review. Information
Security
Officer can respond and track all material incidents, unauthorized
access attempts, new threats and corrective measures. If an intrusion
is confirmed or suspected, Incident Response procedures are attached.
- Schedules and
documents all Website reviews to prevent
unauthorized changes.
- Ensures online banking
vendor completes ongoing intrusion
testing and
dormant users are deactivated.
- Instructs Information
Security Officer to complete periodic
requirements such as an independent assessment of the institution's
networks against known vulnerabilities. The results of assessments are
documented and are reported to appropriate personnel.
- Annual review of
software release notes to make certain all
available
intrusion detection and prevention security features used to detect
unauthorized access are in use.Schedules and documents a performance
review of security vendors.Detailed reporting demonstrates the
institution's diligence to Board
and Regulators
  
|
