Print Page   |   Contact Us   |   Sign In   |   Register
FFIEC Information Security Handbook Review
Tell a Friend About This EventTell a Friend

When: 9:00 AM
Where: United States

« Go to Upcoming Event List  

Program Content:

In September 2016, the FFEIC completely rewrote the Information Security Handbook. The Handbook represents an integration of concepts from Cybersecurity Guidance, Management Guidance, and other elements released in the past 10 years. The FFIEC Information Security Handbook is the most comprehensive resource from the FFIEC on constructing an adequate Information Security Program. Information Security Programs are created based on risk assessment processes that assist The Handbook focuses on the governance, culture, and responsibilities to make Information Security Programs successful. The creation of these programs is based on risk assessment processes that assist the institution in making control decisions; these decisions are then documented in policies, standards, and procedures. The last component of a successful program is to ensure the controls are effectively implemented with assurance, testing, and auditing processes.

Covered Topics:
The following components of the handbook will be reviewed:
      • Governance of the Information Security Program
      • Information Security Program Management
      • Security Operations
      • Information Security Program Effectiveness
      • Recurring requirements listed in the FFIEC Booklet

Who Should Attend:
Information Security Officer, IT Manager, Risk Officer, Internal Auditor, Board members, or other management team members looking to understand the new FFIEC requirements and expectations.

Chad Knutson is a Senior Information Security Consultant and serves as President of the SBS CyberSecurity out of Madison, SD. SBS is a leader in information security consulting for the financial industry in the US. SBS works with more than 900 banks around the country on information security services such as the development of Information Security Programs, Policies, and Risk Assessments, along with performing IT Audits, Penetration Tests, Vulnerability Assessment and other security services. Chad is a Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA) and Certified in Risk and Information Security Controls (CRISC), and received his Bachelor of Science in Computer Information Systems and his Master of Science in Information Assurance with an emphasis in Banking and Finance Security from Dakota State University. Chad has been with SBS since 2004 and has consulted with many financial institutions during this time.


Membership Management Software Powered by YourMembership  ::  Legal