Banking Information Security Podcast

Information Security Media Group interviews Wyatt Starnes, a pioneer in computer network intrusion detection. Wyatt Starnes is the founder of TripWire, a tool for host-based intrusion detection. The interview includes his views on information security in the financial services industry, the trusted computing movement, emerging cyber threats and the way institutions should protect their expanding perimeters and his work on the advanced technologies for NIST. Starnes’ nearly 30 years in high technology with eight different startups has honed his view of information security. Currently he’s the Chairman and Chief Executive Officer of SignaCert, and is focusing on commercial work in the trusted computing area. He’s also the cofounder of RAINS (Regional Alliances for Infrastructure and Network Security), a nonprofit public/private alliance formed to accelerate development, deployment and adoption of innovative technology for homeland security. Prior to

In this podcast especially for the credit union community, CUInfoSecurity.com interviews Kevin Davies, vice president of professional development of the Credit Union Executives Society (CUES). CUES is a Madison, WI-based, independent, not-for-profit membership association for credit union executives. It aims to advance the professional development of credit union CEOs, senior management and directors. During Davies’ interview he talks about the new partnership between CUInfoSecurity.com and CUES. Davies also speaks to some of the issues that are getting attention from credit unions including disaster recovery preparation, the move to implement multifactor authentication on voice transaction systems, and the threat that credit card and debit card fraud pose for credit unions.

The largest banking association’s senior policy advisor gave his insights into what financial institutions really need during a 35-minute podcast with BankInfoSecurity.com. Doug Johnson serves as the American Bankers Association’s Senior Policy Advisor for Government Relations, where he is involved in a variety of public policy and compliance issues. He has assisted in the ABA’s release of a series of tools to deter bank robberies, assess information technology risk, deter phishing, and safeguard customer information. He led work on the current Emergency Preparedness Toolbox. Doug represents the ABA on the Financial Services Sector Coordinating Council, which advises the federal bank regulatory agencies on homeland security and critical infrastructure protection issues, and serves on the BITS/Financial Services Roundtable Security and Risk Assessment Steering Committee. He is also an advisory board member of the Financial Services Information Shari

Catherine Allen is CEO of BITS, a financial service industry consortium made up of 100 of the largest financial institutions in the US. She is a noted innovator and visionary in the financial services industry. Named as one of 16 unsung heroes and rising stars by Fast Company Magazine, she led BITS from a fledgling organization in 1996 to its current status as key industry forum for cutting edge issues in financial services. She is frequently consulted as an expert on the subjects of security, e-commerce, and payments. She sits on the Boards of the Financial Services Technology Consortium, the Financial Services Sector of Coordinating Council, MIST, and Hudson Ventures, and serves on taskforces as well as a number of industry groups. In this interview Allen discusses with CUInfoSecurity.com the state of information security in the financial services industry, fighting cyber crime, threats on the horizon for financial institutions, and the initiatives BITS is working on to provide help for mid and smalle

Catherine Allen is CEO of BITS, a financial service industry consortium made up of 100 of the largest financial institutions in the US. She is a noted innovator and visionary in the financial services industry. Named as one of 16 unsung heroes and rising stars by Fast Company Magazine, she led BITS from a fledgling organization in 1996 to its current status as key industry forum for cutting edge issues in financial services. She is frequently consulted as an expert on the subjects of security, e-commerce, and payments. She sits on the Boards of the Financial Services Technology Consortium, the Financial Services Sector of Coordinating Council, MIST, and Hudson Ventures, and serves on taskforces as well as a number of industry groups. In this interview Allen discusses with BankInfoSecurity.com the state of information security in the financial services industry, fighting cyber crime, threats on the horizon for financial institutions, and the initiatives BITS is working on to provide help for mid and smal

Information Security Media Group recently attended the RSA Conference 2007, the premier information security conference representing more than 200 comprehensive educational sessions and close to 400 of the top vendors in the infosec industry. The following audio is a selection of recordings taken on the expo floor where industry-leading vendors of all shapes and sizes presented their products and services to attendees. We encountered all kinds of vendor solutions ranging from multi-factor authentication to database encryption and security to automated regulatory compliance. We hope you find their take on specifically the banking and finance industry as intriguing as we did. Vendor interviews and recordings are presented in alphabetical order and please note that we are not endorsing any particular vendor or product, we are just reporting on their take on the finance industry.

Information Security Media Group recently attended the RSA Conference 2007, the premier information security conference representing more than 200 comprehensive educational sessions and close to 400 of the top vendors in the infosec industry. The following audio is a selection of recordings taken on the expo floor where industry-leading vendors of all shapes and sizes presented their products and services to attendees. We encountered all kinds of vendor solutions ranging from multi-factor authentication to database encryption and security to automated regulatory compliance. We hope you find their take on specifically the banking and finance industry as intriguing as we did. Vendor interviews and recordings are presented in alphabetical order and please note that we are not endorsing any particular vendor or product, we are just reporting on their take on the finance industry.

Listen to CUInfoSecurity’s latest podcast as a leading phishing researcher explains some of his newest findings on phishing. Dr. Markus Jakobsson is a professor at Indiana University, and a research fellow with the Anti Phishing Working Group (AWPG). Dr. Jakobsson is also Associate Director of the Center of Applied Cybersecurity Research, and a founder of RavenWhite Inc, and he heads the efforts at www.stop-phishing.com. Author and inventor of more than fifty patents, Jakobsson’s research delves into not the technical aspects of phishing and other types of cyber attacks, but also focuses on the human aspect. His latest paper, “The Human Factor in Phishing” is discussed in this two-part podcast. During the interview Dr. Jakobsson describes the research he is doing on fraud, social engineering and phishing, and the prevention of these attacks. His interview is not to be missed, as he explains some of the new ways attackers are targeting th

Listen to BankInfoSecurity’s latest podcast as a leading phishing researcher explains some of his newest findings on phishing. Dr. Markus Jakobsson is a professor at Indiana University, and a research fellow with the Anti Phishing Working Group (AWPG). Dr. Jakobsson is also Associate Director of the Center of Applied Cybersecurity Research, and a founder of RavenWhite Inc., and he heads the efforts at www.stop-phishing.com. Author and inventor of more than fifty patents, Jakobsson’s research delves into not the technical aspects of phishing and other types of cyber attacks, but also focuses on the human aspect. His latest paper, “The Human Factor in Phishing” is discussed in this two-part podcast. During the interview Dr. Jakobsson describes the research he is doing on fraud, social engineering and phishing, and the prevention of these attacks. His interview is not to be missed, as he explains some of the new ways attackers are targeting

Listen to CUInfoSecurity’s latest podcast as a leading phishing researcher explains some of his newest findings on phishing. Dr. Markus Jakobsson is a professor at Indiana University, and a research fellow with the Anti Phishing Working Group (AWPG). Dr. Jakobsson is also Associate Director of the Center of Applied Cybersecurity Research, and a founder of RavenWhite Inc, and he heads the efforts at www.stop-phishing.com. Author and inventor of more than fifty patents, Jakobsson’s research delves into not the technical aspects of phishing and other types of cyber attacks, but also focuses on the human aspect. His latest paper, “The Human Factor in Phishing” is discussed in this first part of a two-part podcast. During the interview Dr. Jakobsson describes the research he is doing on fraud, social engineering and phishing, and the prevention of these attacks. His interview is not to be missed, as he explains some of the new ways attackers

Listen to BankInfoSecurity’s latest podcast as a leading phishing researcher explains some of his newest findings on phishing. Dr. Markus Jakobsson is a professor at Indiana University, and a research fellow with the Anti Phishing Working Group (AWPG). Dr. Jakobsson is also Associate Director of the Center of Applied Cybersecurity Research, and a founder of RavenWhite Inc., and he heads the efforts at www.stop-phishing.com. Author and inventor of more than fifty patents, Jakobsson’s research delves into not the technical aspects of phishing and other types of cyber attacks, but also focuses on the human aspect. His latest paper, “The Human Factor in Phishing” is discussed in this first part of a two-part podcast. During the interview Dr. Jakobsson describes the research he is doing on fraud, social engineering and phishing, and the prevention of these attacks. His interview is not to be missed, as he explains some of the new ways attacke

Listen to Susan Orr CISA, CISM, CRP - ex-FDIC examiner respond to some of the FAQs from our IT risk assessments webinar. See below for a sampling of the questions asked.

Listen to Susan Orr CISA, CISM, CRP - ex-FDIC examiner respond to some of the FAQs from our Preparing for a Regulatory IT Exam webinar. See below for a sampling of the questions asked.

A former FBI agent/computer specialist, Schmidt is one of the world’s top information security luminaries who helped lead the escalating war against cybercrime. He is one of the most credible and influential names in information security, and was Microsoft’s CSO and later eBay’s CISO. He’s also served as CyberSecurity Advisor to the White House. As co-author of two books on information security, his latest book, “Patrolling Cyberspace – Lessons Learned from a Lifetime in Data Security,” details his nearly 30 years spent on the bleeding edge of government and corporate information security. CUInfoSecurity.com’s interview with Schmidt covers information security threats, efforts to thwart international cybercrime, upcoming privacy regulations and enforcement, the use of encryption software, financial industry’s information sharing with government a

A former FBI agent/computer specialist, Schmidt is one of the world’s top information security luminaries who helped lead the escalating war against cybercrime. He is one of the most credible and influential names in information security, and was Microsoft’s CSO and later eBay’s CISO. He’s also served as CyberSecurity Advisor to the White House. As co-author of two books on information security, his latest book, “Patrolling Cyberspace – Lessons Learned from a Lifetime in Data Security,” details his nearly 30 years spent on the bleeding edge of government and corporate information security. BankInfoSecurity.com’s interview with Schmidt covers information security threats, efforts to thwart international cybercrime, upcoming privacy regulations and enforcement, the use of encryption software, financial industry’s information sharing with government

The SANS Institute is the largest source for information security training and certification in the world. CUInfoSecurity.com recently interviewed Alan Paller, Director of Research for SANS and probed his views on information security and cyber threats facing financial institutions. As Director of Research for the SANS Institute, Alan is responsible for overseeing all research projects ranging from the SANS Step-by-Step guides to the SANS digests to the Top Twenty Internet Security Threats. He is the founder of the CIO Institute, and earned his degrees in Computer Science and Engineering from Cornell and MIT. Alan is the author of the EIS Book: Information Systems for Top Managers and How to Give the Best Presentation of Your Life. In 2001 the President named Alan as one of the original members of the National Infrastructure Advisory Council, and in 2005 the Federal CIO Council chose him as its 2005 Azimuth Award winner recognizing his vision and outstanding service to federal information technology. In

The SANS Institute is the largest source for information security training and certification in the world. BankInfoSecurity.com recently interviewed Alan Paller, Director of Research for SANS and probed his views on information security and cyber threats facing financial institutions. As Director of Research for the SANS Institute, Alan is responsible for overseeing all research projects ranging from the SANS Step-by-Step guides to the SANS digests to the Top Twenty Internet Security Threats. He is the founder of the CIO Institute, and earned his degrees in Computer Science and Engineering from Cornell and MIT. Alan is the author of the EIS Book: Information Systems for Top Managers and How to Give the Best Presentation of Your Life. In 2001 the President named Alan as one of the original members of the National Infrastructure Advisory Council, and in 2005 the Federal CIO Council chose him as its 2005 Azimuth Award winner recognizing his vision and outstanding service to federal information technology. I

A world authority on software and application security, Gary McGraw, PhD and CTO of Cigital, carries the software security torch. Over the past 11 years his six books on the subject of software security seem to have touched off a revolution. Security people who once relied solely on firewalls, intrusion detection, and antivirus mechanisms came to understand and embrace the necessity of better software. Author of more than 90 peer reviewed technical publications, he is a principal investigator working with the Air Force Research Labs, DARPA, National Science Foundation and NIST’s Advanced Technology Program. He also is an advisor to top U.S. university computer science departments, and sits on the IEEE Board of Governors. In this interview McGraw discusses with CUInfoSecurity.com the state of information security in the financial services industry, pervasive computing, the trusted computing initiative, cyber threats on the horizon for financial institutions, software security, information s

A world authority on software and application security, Gary McGraw, PhD and CTO of Cigital, carries the software security torch. Over the past 11 years his six books on the subject of software security seem to have touched off a revolution. Security people who once relied solely on firewalls, intrusion detection, and antivirus mechanisms came to understand and embrace the necessity of better software. Author of more than 90 peer reviewed technical publications, he is a principal investigator working with the Air Force Research Labs, DARPA, National Science Foundation and NIST’s Advanced Technology Program. He also is an advisor to top U.S. university computer science departments, and sits on the IEEE Board of Governors. In this interview McGraw discusses with BankInfoSecurity.com the state of information security in the financial services industry, pervasive computing, the trusted computing initiative, cyber threats on the horizon for financial institutions, software security, information

Listen to Susan Orr CISA, CISM, CRP - ex-FDIC examiner respond to some of the FAQs from our information security for board members and senior management webinar. See below for a sampling of the questions asked.