
	Home > Financial Services Information Security Tips > Compliance and Governance Digest > Information security governance using a risk-based approach

Financial Security Tips:

EMAIL THIS

TIPS & NEWSLETTERS TOPICS

COMPLIANCE AND GOVERNANCE DIGEST

Information security governance using a risk-based approach

Eric Holmquist, Contributor
11.04.2008
Rating: --- (out of 5)

Digg This!

StumbleUpon

Del.icio.us

More on this:

Outlining governance frameworks

View more presentations from Financial Information Security Decisions

Learn more about Financial Information Security Decisions

More than ever information security in financial services requires a thorough combination of governance elements, including policies, procedures, technology and, most importantly, training and awareness. In this session, Eric Holmquist explores the key elements of sound information security governance and how to successfully manage and coordinate all of the complex and important elements.

Download this presentation to learn how to:

Design an effective governance structure
Manage to more than just regulatory compliance
Create effective control and monitoring elements

>> Download this presentation

About the presenter:
Eric Holmquist is the Vice President and Director of Operational Risk at Advanta Bank. Eric has over 25 years experience in the financial services industry and is a frequent industry author and speaker. He is responsible for the development and oversight of the bank's operational risk management program. In addition, Holmquist chairs the bank's MIS Council, an oversight group that provides governance with regard to standards, methods and production of financial and operational reports and the management of enterprise data. Holmquist also acts as the bank's information security officer with responsibility for oversight of the bank's information security strategy as well as acting as a liaison to the Board of Directors.

Holmquist chairs the operational risk management for IT committee through the Risk Management Association, a nationwide trade group based in Philadelphia focused on sound risk management practices in the global financial services industry. Holmquist is the author of "Risk-Sizing ORM – Scaling Operational Risk Management For The Small To Mid-sized Market", is a contributing author to "Operational Risk 2.0 (2007)" and "The Advanced Measurement Approach to Operational Risk (2006)", both by Incisive Media and writes periodic articles on operational risk management topics for OpRisk & Compliance Magazine

Rate this Tip
To rate tips, you must be a member of SearchFinancialSecurity.com. Register now to start rating these tips. Log in if you are already a member.

Digg This!

StumbleUpon

Del.icio.us

RELATED CONTENT

	Compliance and Governance Digest
	PCI 1.2: Seven key changes for financial organizations
	PCI DSS 3.1 best practices
	How to make information security a company-wide effort
	Using an information security council
	How I learned to stop worrying and love my compliance department
	Investigation management tools ease fraud pains
	Integrating ethics from top to bottom
	Rogue activity thwarted by early warning systems
	Red Flags rule: Unclear guidance biggest challenge
	Strategic metrics for information security at financial services firms

Financial services compliance best practices

Using an information security council

How I learned to stop worrying and love my compliance department

Integrating ethics from top to bottom

Partner data privacy: Issuing stricter guidelines

How to implement the NIST role based access control model

NAC fulfills compliance and security needs

Financial Information Security Decisions 2008: Presentation downloads

For financial firms, numerous compliance requirements demand baseline controls

Best practices for managing compliance with security standards

The cost of privacy safeguards

Risk management frameworks, metrics and strategy

Using an information security council

Security on the street with SearchFinancialSecurity.com: Risk management

Strategic metrics for information security at financial services firms

Metrics don't truly quantify information risk

Financial Information Security Decisions 2008: Presentation downloads

Rethinking risk management for financial services firms

Outlining governance frameworks

How to make management accountable for risk

Five steps to building information risk management frameworks

Guidelines for conducting a risk assessment

RELATED GLOSSARY TERMS

Terms from Whatis.com − the technology online dictionary

corporate governance (SearchFinancialSecurity.com)

subpoena (SearchFinancialSecurity.com)

RELATED RESOURCES

2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems

Search Bitpipe.com for the latest white papers and business webcasts

Whatis.com, the online computer dictionary

DISCLAIMER: Our Tips Exchange is a forum for you to share technical advice and expertise with your peers and to learn from other enterprise IT professionals. TechTarget provides the infrastructure to facilitate this sharing of information. However, we cannot guarantee the accuracy or validity of the material submitted. You agree that your use of the Ask The Expert services and your reliance on any questions, answers, information or other materials received through this Web site is at your own risk.

Finance Sector Security - Anti-Phishing, Remote Access Security, Firewall Systems

SEARCH

TechTarget provides enterprise IT professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective IT purchase decisions and managing their organizations' IT projects - with its network of technology-specific Web sites, events and magazines.


TechTarget Corporate Web Site \| Media Kits \| Site Map All Rights Reserved, Copyright 2008 - 2009, TechTarget \| Read our Privacy Policy