General discussion
-
CreatorTopic
-
September 30, 2002 at 1:50 am #2329368
Should banks focus on risk management?
Lockedby debate · about 21 years, 6 months ago
Do you agree that companies should focus their IT spending on risk management? How does your organization focus its IT spending? Tell us what you think about focusing IT spending on risk management, as featured in this week’s IT Financial Services e-newsletter.
Topic is locked -
CreatorTopic
All Comments
-
AuthorReplies
-
-
October 1, 2002 at 12:37 am #3487221
Risk management spending
by ltolevaz · about 21 years, 6 months ago
In reply to Should banks focus on risk management?
Risk management spending on times of turbulence is a must;it should be done to obtain critical information on the economics of markets trends of each sector where the banks have or plan to loan money, this on top of client knowledge and its managerial capabilities. However, all these risk management activities need to be grounded on a sound IT infrastructure.
-
October 1, 2002 at 12:39 am #3487218
Risk management spending
by ltolevaz · about 21 years, 6 months ago
In reply to Should banks focus on risk management?
Risk management spending on times of turbulence is a must;it should be done to obtain critical information on the economics of markets trends of each sector where the banks have or plan to loan money, this on top of client knowledge and its managerial capabilities. However, all these risk management activities need to be grounded on a sound IT infrastructure.
-
October 10, 2002 at 12:29 pm #3505094
Say what?
by c.barnhorst · about 21 years, 5 months ago
In reply to Risk management spending
Can you say this at a lower reading level?
-
-
October 1, 2002 at 12:44 am #3487214
I am the NetAdmin for a Bank
by radiic · about 21 years, 6 months ago
In reply to Should banks focus on risk management?
With the new Graham/Bliley Act, it seems that the occ is focusing on all types of Risk Management, and forcing banks to do it anyways. We even have to have a vendor Management policy and procedure in place. We have so many policies for assesing risks that I am Policied out. Why cant i just work on my firewall or my router and have some fun>?
Rad
-
October 7, 2002 at 3:57 am #3486059
Regulations
by pjohnson · about 21 years, 5 months ago
In reply to I am the NetAdmin for a Bank
As we have seen, banks, credit card companies, online vendors, etc. are having a terrible time maintaing effective security controls over the “non-public sensitive information” provided by customers. An informational security program incorporates Risk Management, Disaster Recovery Plans, Business Continuity plans, Policies and Procedures (IT), Penetration testing, Internal Vulnerability analysis, Vendor due diligence, etc. This is an ongoing effort to secure customer data from hackers and malicious intent.
Personally, the regulators are as frustrated about it as you. Most Don’t know what an effective security program contains, much less how to analyze one for effectiveness. Therefor, naturally youd be frustrated putting all kinds ofwork into something that the auditors have limited skills in comprehending. My heart goes out to you, but these are necessary growing pains.-
October 10, 2002 at 5:31 am #3505205
I agree with you, I was just venting
by radiic · about 21 years, 5 months ago
In reply to Regulations
I know people are really worried about Identiy theft and things of that nature. We are in the process of making sure all our policies and practices comply and surpass in all the areas you mentioned. But just remember all those polices in place. They are only worth the paper they are written on if the staff follows them.
-
July 10, 2003 at 8:07 am #3372034
Enforcement
by pjohnson · about 20 years, 8 months ago
In reply to I agree with you, I was just venting
That’s why there must be a security/compliance officer ready to jump in and dole out lashings to those that do not see themselves and thei actions as vital in the realm of total security. Regular training and retraining, testing (social engineering, etc.) can help with this. Also, a monthly public execution or beating should keep their minds on it ;).
-
-
-
October 10, 2002 at 12:38 pm #3505093
It’s all about the money.
by c.barnhorst · about 21 years, 5 months ago
In reply to Should banks focus on risk management?
The Bank cannot make money if it gets bad press from some hacker break in and the theft of, say, 20,000 credit card files. It doesn’t matter what really happened if that is how the press reports it. People put money in a bank to feel secure first and perhaps make a little interest second. Of course a bank should focus on risk management. People actually brag on how securely placed their money is.
-
-
AuthorReplies