You are here: silicon.com > Resources > White Papers > IT Management > IT Infrastructure > Disaster Recovery

Disaster Recovery White Papers

Legislation Affecting Bank Security: Ensuring Integrity and Trustworthiness of Electronic Data in Compliance with GLB/OCC Requirements

Overview The prevalence of Internet-based banking, as well as the electronic infrastructures now underlying even conventional banking, make computer and data security mandatory in the financial services industry.

The Gramm-Leach-Bliley Act (GLB), signed into law in November 1999, is one federal response to the implications of online banking, ecommerce, electronic records and the need to keep customer records secure. GLB requires banks to protect customer privacy and prove it. Together, the requirements for security and privacy converge to position network and data integrityÂ—and the ability to remediate quicklyÂ— as the foundation of a bank's IT policies and procedures.

In conjunction with moves to implement GLB, the Office of the Comptroller of the Currency (OCC) has published bulletins1 providing guidance to national banks on how to prevent, detect and respond to intrusions into their computer systems. The OCC's jurisdiction is to charter, regulate, and supervise national banks to ensure a safe, sound, and competitive banking system that supports the citizens, communities, and economy of the United States. The OCC charters, regulates and examines approximately 2,600 national banks and 66 federal branches and agencies of foreign banks in the United States, accounting for 58 percent of the nation's banking assets.

Failure to comply with OCC guidelines for GLB compliance is not a trivial issue. It can shut a bank down. There is the time lost in actual system downtime due to intrusion, time spent finding and repairing the damage, plus OCC-required shutdown until compliance and remediation are demonstrated to their satisfaction. In addition, OCC has the authority to levy fines and/or suspend a bank's charter for failure to comply.

Real-time intrusion detection and response mechanisms are key to the OCC's recommendations, which cover the gamut from basic security procedures such as employee background checks, to technology-based strategies suc

Further White Paper Details
Publisher	Tripwire	File Format	HTML
Date Published	June 2002	Downloads	261
Format	White Papers
Topics	Disaster Recovery, Asset Management, Privacy Issues, Anti-Hacking, Anti-Virus, Application Security Tools, Firewalls, Network Security, Security Applications, Security Standards, Security Management, Bank Management, Online Banking, Online Trading, E-commerce Security, Security Tools, Gramm-Leach-Bliley Act

Did you find this white paper useful? 2 out of 6 users found this white paper useful

Best Practices for Making Your NetBackup Environment Highly Available With Storage Foundation and Veritas Cluster Server

Publisher:
Symantec

Delivering High Availability for Mission-Critical Applications in a Windows Server Environment

Publisher:
Symantec

Symantec Backup Exec System Recovery Server Edition

Publisher:
Symantec

Five Considerations for Choosing a Microsoft Exchange Continuity Solution

Publisher:
NEC Corporation of America

Really Really Fast Failover for SAP With Veritas Cluster File System High Availability From Symantec

Publisher:
Symantec

Google fights US gov't request for search data

The company said: "We did comply with their request for data in regards to helping protect children, in a way that ensured we also protected the privacy of our customers. In court documents filed on Wednesday, the Bush administration asked a...

Analysis: Politicians botching tech laws

Software distribution sites like those of SourceForge and the Comprehensive Perl Archive Network would be outlawed, if they did not follow these byzantine legal rules, which include obtaining "verifiable parental consent" if the downloader is a...

Bush signs Homeland Security bill - the details

The law also: requires all federal agencies, including the CIA, the Defense Department and the National Security Agency, to provide the new department with any "information concerning the vulnerability of the infrastructure of the United States...

Channel:
Law & Policy

Locking down financial security

Across the Atlantic, non-mandatory guidelines from the US Federal Financial Institutions Examination Council (FFIEC) now also strongly recommend 2FA for web-based banking transactions. Thirty per cent of banks reported repeated internal breaches...

Analysis: Does ID management invade workers' privacy?

An employee is suspected of unauthorised behaviour such as selling customers account records to a third party. Under the Human Rights Act, the employee has certain rights such as the right to privacy over his or her personal domain.

'Homeless hacker' on verge of surrendering to feds

In that incident, which New York Times Digital confirmed at the time, Lamo was able to view employee records, including Social Security numbers. Mary French, a deputy public defender in Sacramento who is representing Lamo, provided a statement that...

Featured White Papers

IDC reports on Novell's Secure Desktop Solution: A Modern-Day Marriage of Business Benefit and Risk Reduction

This IDC whitepaper examines how companies are turning to integrated security solutions, such as Novell Secure Desktop Solution, to deal with the vulnerability of mobile assets and implement a comprehensive security strategy.

Publisher:
Novell

Green IT: Reducing your Carbon Footprint with Citrix

Going green has become an imperative, not an option, for companies facing the new reality of balancing business objectives with dwindling environmental resources. Read on to learn how Citrix products can help bring environmental and organizational objectives into alignment by alleviating the energy impact of equipment needed to serve both the datacenter and the desktop.

Publisher:
Citrix Systems

Identity and Security Management and Strong Information Technology Goverance

A total identity and access management (IAM) – driven goverance, risk and compliance (GRC) solution should ensure foolproof and accurate measurements of policies and practises across the enterprise. This IDC white paper examines identity and security management (ISM) solutions and how these integrated offerings can play a key role in enforcing security compliance.

Publisher:
Novell

Also on silicon.com

Site Navigation:

Disaster Recovery White Papers

Legislation Affecting Bank Security: Ensuring Integrity and Trustworthiness of Electronic Data in Compliance with GLB/OCC Requirements

Quick Sitemap Links:

About Us

Search

Blogs

Verticals

CNET Networks in Europe

CNET Networks in the United States

CNET Networks in Asia Pacific