http://www.coreim.com/index.htmlHot News!enjoe@coreim.comCopyright 2008 Joseph Compton2008-05-21T15:51:41-04:00 hourly 1 2000-01-01T12:00+00:00 Wed, 21 May 2008 15:52:13 -0400joe@coreim.comNews2008-05-21T15:51:41-04:00http://www.coreim.com/News/files/b8dd4e4c99784bc15cba2aefcf672c6b-1.html#unique-entry-id-1http://www.coreim.com/News/files/b8dd4e4c99784bc15cba2aefcf672c6b-1.html#unique-entry-id-1
The heart of this program is a series of short policies that outline and define risk areas that each bank’s management and board of directors must develop, implement, and monitor. In our view, to be compliant with GLBA, a bank must develop a GLBA Security Program that touches on nine different areas. Bank management needs to create:

1. A departmental risk assessment policy
2. A bank-wide vendor management policy
3. An I.T. security policy
4. An acceptable use / confidentiality policy (signed by users)
5. A document and media retention policy
6. A business continuity and disaster recovery plan supported by business impact analysis worksheets
7. An employee security training policy
8. An internal and external I.T. audit policy (which should include the I.T. penetration test that most people associate with GLBA).
9. An incident response program

These elements will allow more efficient technology and security compliance management. For more details, call today!]]>joe@coreim.comNews2008-05-21T15:50:48-04:00http://www.coreim.com/News/files/d888d4dec3604adfbc7c24d31fc02345-0.html#unique-entry-id-0http://www.coreim.com/News/files/d888d4dec3604adfbc7c24d31fc02345-0.html#unique-entry-id-0