All webinar attendees may receive a Certificate of Attendance. Click here to request yours.
Mitigating Information Security Risks in Today’s Environment
Webinar
11 AM CT
Presenter(s): Tom Stripling
Duration: 1 hour
Pricing:
Live, Digital Download or CD
combos available for an additional $50
$299 - (full-price, no discount)
$249 - (for Affiliation Members)
Is your bank’s information security program as effective and robust as it could be? Are you throwing money and resources at the problem with no clear strategy to follow? Have you reassessed where today’s risk exposures are? No matter how secure you think your bank is, any external connection to another network, service provider, or the Internet can make your bank a potential target.
Join this session to review strategies to mitigate information security risk so you can see if your current security practices conform with industry best practices to assess potential vulnerabilities. Topics to be discussed include:
- How to identify vulnerabilities
- Vulnerability scanning
- Expert penetration testing
- What strategies are available to prevent attack
- Risk evaluation
- Prioritization of remediation efforts
- Implementation of countermeasures
- Why network visibility, incident response, and attack forensics are important
- Identification and detection of security events
- Creating an incident response plan
- Responding to and identifying the cause of an incident
BIO: Tom Stripling
Tom Stripling is Director of Security Services for Sheshunoff Consulting + Solutions. He is a seasoned application security expert with an extensive background in application development, penetration testing, code review, and information security best practices.
Prior to joining SCS, Tom managed the application security consulting team for a firm headquartered in the Midwest. While in that role, he developed and expanded the company’s web application security assessment methodology and led projects that applied that methodology in the financial, health care, and high-tech industries. He has led projects commissioned by and delivered to C-level executives at financial institutions of all sizes, including PCI readiness assessments and IT security audits that measure compliance with security policies and regulatory standards. He also defined and executed the firm’s methodology for securing the SDLC process in client organizations, which adapts the software development processes in client organizations to produce secure software with minimal disruption and cost. In addition, he has presented application security training courses to clients on numerous occasions.
Tom has spoken at numerous regional and national events, including the RSA and OWASP security conferences. His experience is supplemented by the Certified Information Systems Security Professional (CISSP) and Certified Information Systems Auditor (CISA) certifications.
Tom holds a Bachelor of Science in Computer Science from Stanford University and an MBA with Distinction from the University of Kansas. He is a member and active participant in local chapters of ISSA, OWASP, and InfraGard.
 |
Sheshunoff Consulting + Solutions is registered with the National Association of State Boards of Accountancy (NASBA), as a sponsor of continuing professional education on the National Registry of CPE Sponsors. State boards of accountancy have final authority on the acceptance of individual courses for CPE credit. Complaints regarding registered sponsors may be addressed to the National Registry of CPE Sponsors, 150 Fourth Avenue North, Suite 700, Nashville, TN, 37219-2417. Web site: www.nasba.org. |