Banking and Cybersecurity: Identifying and Managing Opportunities and Pitfalls
Financial institutions are easy targets for cyber criminals that immediate threat identification and management have now become vital parts of the defense procedure. Additionally, the increasing sophistication of cyber threats proves that simple mitigation strategies no longer suffice to counter attacks.
The gap between banking and cybersecurity is now becoming thinner, and clearly, banks and other financial institutions need to regularly evaluate and leverage their defense strategies.
Join a panel of key thought leaders and cyber security professionals assembled by The Knowledge Group as they bring the audience to a road beyond the basics of defending against malicious cyberattacks. Listen as they delve into an in-depth analysis of the current trends and strategies in identifying and managing such risks to strengthen the defense tactics of banks and other financial institutions.
In a LIVE webcast, the speakers will discuss:
- The Thin Line Between Banking and Cybersecurity
- Figures and Statistics
- Worst Cyber-Thefts in 2017
- Identifying and Managing Risks
- Latest Cybersecurity Standards and Guidelines
- Defense Strategies
Alex Hernandez, VP of Customer Solutions
- The Scope of the problem. Banks are dealing millions of events, thousands of alerts and expectations of coverage and response by regulators. Executive thinking that “my IT dept. has got this covered” is no longer a luxury in today’s world. Top level people are losing their jobs because they are not providing proper oversight. (Equifax)
- Different ways to solve the problem: Build yourself, outsource it, or do it on paper, but new emerging solution which is co-management
- The relationship between cyber-security and cyber-compliance and how that provides management with the ability to govern the overall cyber security program. Banks need to plan to do the right things, have methods of internal tracking that they are doing the right things, and the ability to prove to auditors/regulators that you are doing the right things. (Equifax)
Alejandro Mijares - MSMIS, CRISC, CISA, Risk Advisory Services (RAS) Leader
Kaufman Rossin, PA
- Main challenges for CISOs in banking
- Information Security Assessments frequency
- Proper metrics to communicate with the Board
Jorge Santiago CISA, CISSP, CIPP/US, Director
Morrison, Brown, Argiz & Farra, LLC
- Blockchain in Financial Services
- Artificial Intelligence and Robotic Process Automation in Banking
- Digital Transformation and the race for millennial banking
- The undisclosed consequences of the Equifax breach
Rebecca Rakoski, Esquire, Managing Partner
XPAN Law Group, LLC
- In New York, the Department of Financial Services (DFS) was ordered to issue a new regulation that would make credit reporting agencies register and comply with New York’s Cybersecurity Regulation (23 NYCRR Part 500). The Cybersecurity Regulation, which became effective in March, 2017, has a proactive component. Financial institutions are required to have a formal, written cybersecurity program.
- Up until this point, we have used social security numbers as identifiers for individuals. In light of Equifax, the banking industry has a real opportunity -- and potentially responsibility, to change the way which companies do business through new and inventive authentication methods.
- The SEC announced the creation of a new Enforcement Division “Cyber Unit” that will focus on cyber-related violative conduct. The financial industry should use this as an opportunity to assess and implement plans to avoid the attention of this cyber unity. This will include various strategies (such as actively monitoring and assessing the SEC’s cybersecurity guidance and documenting this work to show reasonable, diligent efforts).
- The irony that the SEC is creating a Cyber Unit on the heels of the 2016 intrusion of the SEC’s EDGAR system.
Who Should Attend:
- Banking and Financial Institutions
- Bank Managers
- E-Banking Managers and Officers
- Cybersecurity Lawyers
- Cybersecurity Professionals
- Information Technology Staff
- Chief Information Officers
- Chief Information Security Officers
- Compliance and Risk Professionals
- Top Level Management
- Other Related and Interested Professionals
Alex Hernandez brings more than 20 years of experience in providing security solutions to some of the largest companies in the world.
Hernandez is a recognized authority on Internet security, having worked with numerous Fortune 500 companies to design and implement security solutions across email, Web, application and network infrastructures. At DefenseStorm he helps to design and implement solutions that allow financial institutions to unify detection, investigation, reporting, and compliance into a single place to deliver cyber safety and soundness – while also making the daily work of cybersecurity and compliance professionals easier, so they can focus on stopping cyber-criminals and ensuring compliance instead of busy work.
Hernandez is regularly sought after by banking associations and state banking schools across the country to discuss cybersecurity and the evolving threat landscape as it relates to financial institutions; because while banks have similar needs to other corporations, they also have unique security needs that present a compelling requisite for a solution that keeps our country’s most sensitive financial data secure from foreign attackers, organized criminals and other bad actors. As an expert in the field of IT and security, he has spoken at regional and national IT/security conferences including Interop, RSA and ISSA.
Prior to DefenseStorm, Hernandez worked with several leading security solutions providers, including Barracuda Networks, Purewire, Secure Computing, CipherTrust, S1 and SecureWare.
Alex Hernandez brings more than 20 years of experience in providing security solutions to some of the largest companies in …
Alejandro Mijares is Risk Advisory Services Leader at Kaufman Rossin where he specializes in providing IT internal audit, system validation and security review services to financial institutions supervised by the FDIC, FRB, State of Florida and OCC. He also conducts IT/IS Technical Risk Assessments including GLBA Risk Assessments for financial institutions throughout the United States. Alejandro Mijares works hand-in-hand with chief information security officers and business leaders to effectively develop and execute a variety of IT, information security and digitalization tactics. He inspires business innovation by advising clients on data, infrastructure and risk management strategies. Alejandro conducts IT/IS-related presentations and webinars, and has been quoted by news sources including the Daily Business Review, ComputerWorld, PropertyCasualty360, Diario Las Americas and Notimex
Alejandro Mijares is Risk Advisory Services Leader at Kaufman Rossin where he specializes in providing IT internal audit, system validation …
Jorge Santiago, CPA, is a director in the Audit department at MBAF. Jorge has over 21 years of experience in risk management, IT governance, internal audit, compliance, and oversight of process and technology integration engagements within the retail, insurance, healthcare, financial services, utilities, and education industries. Jorge has deep expertise in a wide range of functional and technical areas that include IT financial audit support, privacy & security advisory, IT risk management, cybersecurity, internal audit outsourcing/co-sourcing, data analytics, disaster recovery/business continuity, controls design, implementation and testing, and project/program management. Additionally, Jorge has over 11 years of experience performing and leading service organization reporting examinations using AICPA standards.
Additionally, Jorge is familiar with most significant business processes supported by IT and has led internal audit functions for global consumer products companies, coordinated program management efforts for large-scale IT projects, and supported financial audits for various public and private clients. Jorge has also managed IT internal controls definition and remediation efforts for several multi-billion dollar clients in various countries.
Jorge Santiago, CPA, is a director in the Audit department at MBAF. Jorge has over 21 years of experience in …
Rebecca Rakoski the co-founder and managing partner at XPAN Law Group, a distinctive Women Owned boutique law firm. Rebecca focuses her practice exclusively on cybersecurity and data privacy. She has extensive experience in all aspects of cybersecurity, data privacy and cross border data transfer issues. Rebecca works with her clients to perform in-depth cybersecurity assessments and audits, review third party vendor contracts and service level agreements, and draft internal and outward facing policies and procedures governing cybersecurity. Rebecca drafts breach response plans and counsels clients through a breach by navigating the complexities of different state and federal regulations. Rebecca also performs cybersecurity and data privacy due diligence to help her clients make informed decisions on corporate mergers and acquisitions, protecting intellectual property, and even transition and succession planning.
Rebecca Rakoski the co-founder and managing partner at XPAN Law Group, a distinctive Women Owned boutique law firm. Rebecca focuses …
Print and review course materials
Method of Presentation:
Basic knowledge in banking or cybersecurity law
NASBA Field of Study:
Information Technology - Technical
NY Category of CLE Credit:
Unlock All The Knowledge and Credit You Need
Leading Provider of Online Continuing Education
It's As Easy as 1, 2, 3
Get Your 1-Year All Access Pass For Only $199
DefenseStorm provides cybersecurity and cybercompliance solutions specifically built for banking. The company delivers the only co-managed, cloud-based and compliance-automated solution of its kind – as both a technology system and as a service supported by experts in financial institution security and compliance. DefenseStorm’s security data platform watches everything on a financial institution’s network and matches it to defined policies for complete and proactive cyber exposure readiness, keeping security teams smart and executives accountable to their customers, communities, regulators and Boards. Built from the ground up in the cloud, DefenseStorm unifies detection, investigation, reporting and compliance into a single place to manage cybersecurity data. The system aggregates event data across all cybersecurity tools and links policies to real-time alerts so that financial institutions can prove to regulators they are both secure and compliant with evolving FFIEC cybersecurity requirements. For more information please visit https://www.DefenseStorm.com.
About Kaufman Rossin, PA
Kaufman Rossin has represented Florida businesses for more than 50 years and serves international clients in dozens of countries. The CPA and advisory firm is one of the largest in the U.S., providing traditional accounting, audit and tax services, as well as business, risk and forensic advisory services. The firm has won significant awards, including repeat honors as the Best Accounting Firm to Work For among large firms nationwide and locally. With more than 300 team members, the firm prides itself on offering the resources of a powerhouse, personally delivered. Go beyond the numbers at kaufmanrossin.com.
About Morrison, Brown, Argiz & Farra, LLC
MBAF is ranked nationally as a Top 40 accounting and advisory firm by Accounting Today, and has been named one of the 2017 Best of the Best firms in the country by INSIDE Public Accounting, a title held for the past 15 years consecutively, chosen for demonstrating long-term consistency and exceptional performance, regardless of outside factors. Named a 2017 Accounting Today Best Firm to Work for, MBAF is committed to creating an engaging and supportive workplace for its more than 500 highly qualified principals and employees. The MBAF team serves domestic and international clients across a broad range of industries and practices in more than 44 countries and all 50 states. Its offices are located in New York, Valhalla (Westchester, NY), Miami, Coral Gables, Naples, Las Vegas, Baltimore, Boca Raton, Boulder, Fort Lauderdale, Palm Beach, Orlando, and India.
About XPAN Law Group, LLC
XPAN Law Group is a certified Women-Owned small business and a boutique law firm that focuses its practice exclusively on cybersecurity, risk mitigation and data protection management and domestic and international data privacy. XPAN provides our clients with in depth cybersecurity audit and risk assessments. We examine the client’s business practices, technology workflow and usage, and internal policies and guidelines on cybersecurity to determine if those practices are consistent with their contractual and legal obligations and cybersecurity best practices. XPAN ensures that the client’s internal policies, procedures and guidelines and risk tolerance align with the way the it uses technology. XPAN also takes a global approach to data privacy, specifically for clients who service the European Union. We provide comprehensive privacy impact assessments and compliance risk analysis for the forthcoming General Data Protection Regulation (GDPR), as well as network design and implementation to comply with relevant international privacy regulations.