Site Map - Banking/Financial Services

Financial Services Firms Under Siege

- The malicious side of social networking, financial firms under siege, and a new roadmap for security convergence.

Following Standard is Not Standard Practice

- Only one in five of the top 200 merchants is in compliance with the Payment Card Industry (PCI) data security standard more than a year after the standard went into effect to improve security among merchants and credit card processors.

Encrypting data at rest

- Pressure to comply with regulatory efforts such as Sarbanes-Oxley and Gramm-Leach-Bliley is the key driver of enterprisewide encryption efforts, according to security professionals at 112 financial services companies surveyed by InfoTech, yet just over half of those surveyed said that encryption of data at rest is “a high priority for their organizations.”

Top 10 Performing Security Stocks for June

- Top 10 Performing Security Stocks for June 2006

Data security

- A bill (H.R. 4127) that would require that companies protect the personal information of customers has been approved by the House Energy and Commerce Committee, the House Judiciary Committee, and the House Financial Services Committee. The bill has now been taken up by the full House. H.R. 4127 would require that any company that holds or transmits individuals’ personal information establish security to protect that information. The bill would also require that information brokers set up reasonable procedures to verify the accuracy of information they collect, assemble, or maintain. H.R. 4127 prohibits information brokers from obtaining or attempting to obtain personal information through false pretenses. The bill defines false pretenses as making false statements or representations or providing counterfeit, lost, stolen, or fraudulently obtained documents.

Catastrophic Event

- Banks faced unique challenges during Hurricane Katrina. This report highlights the lessons they learned.


- Number of daily cyberattacks launched against credit unions

Cybersecurity Checklist for Business Managers

- John Bumgarner, research director for security technology with the US-CCU, says that the idea for the checklist evolved because, despite the number of industry-specific guidances (such as Sarbanes-Oxley and ISO standards), there was nothing aimed at nontechnical managers.

To Encrypt or Not to Encrypt? That is the Question

- Do financial services firms have to encrypt customer data? Also, a computer on a stick, and a cybersecurity checklist for business managers.

Creating an Integrated Approach

- MacDill Federal Credit Union invests in a security system that goes beyond regulatory requirements.

Top 10 Performing Security Stocks for June


Did you Know That?

- Recognizing that compliance with Sarbanes-Oxley is disproportionately costly for small companies, the Greater Boston Chamber of Commerce has called for the Securities and Exchange Commission to exempt small public companies from certain provisions of Section 404 of the statute. Section 404 requires public companies to put into place an internal control structure for financial reporting and to report annually on the structure’s effectiveness. @ That recommendation, and four others, can be found in a fairer climb: improving Sarbanes-Oxley, available at SM Online.

Dirty Dealing: The Untold Truth About Global Money Laundering, International Crime and Terrorism, 3rd Edition

- Learn the basics about the most profitable criminal enterprise in the world.

Beyond Print

SM Online

See all the latest links and resources that supplement the current issue of Security Management magazine.