Dr. Kevin Streff and VP-Sales Rick Olivier will be presenting information on Information Risk Assessment and Third Party (Vendor) Management to the North Dakota Bankers Association IT peer group on November 19th and 10am. There will also be a demonstration of TRAC at this meeting. If you are interested in attending this event contact Ann Reich at the NDBA for more details.
SBS is excited to announce that the Third Party Management module of TRAC is beginning it's beta testing phase. The new module will allow a bank to have an efficient and compliant method for helping to select new vendors and do regular management of them. If your bank would like to be a beta test bank of this module for SBS please contact Rick Olivier at 605-270-3321.
Dr. Kevin Streff will lead a workshop on Information Security for the Virginia Association of Community Banks on February 24th and 25th in Blacksburg and Richmond respectively. If you would like more information on this event you can contact Katharine Garner at the VACB or contact SBS through the contact page.
SBS sponsored a booth at the event held in Rapid City SD.
Dr. Streff presented a program on the IT risk assessment in community banks.
Areas covered were:
* Regulatory review of the risk assessment.
* Issues with completing a risk assessment.
* Repeatable risk assessment process.
* Emerging processes to complete a risk assessment.
* Tools to facilitate the risk assessment.
Dr. Streff presented a program on how community banks can implement an Information Security Program (ISP). Areas covered were:
* Documenting the ISP.
* The flow of work from IT risk assessment to the IT audit, with the ISP bridging the two.
* Automating this process.
Dr. Kevin Streff presented an online webinar to Credit Unions on Regulator Hot Buttons. Areas covered were:
* documenting an Information Security Program (ISP).
* GLBA requirements.
* IT Risk Assessment.
* Penetration Testing
* Vulnerability Assessment.
* Wireless Technology.
* Mobile technology.
Dr. Streff presented a webinar called the "Blueprint for and Information Security Program". This program documented;
- How to build
- Steps of
- Operate and maintain
- Monitor and evaluate
an information security program.