Presentation is loading. Please wait.

Presentation is loading. Please wait.

Cisco Confidential 1 © 2010 Cisco and/or its affiliates. All rights reserved. Security in Banking Emmanuel van de Geer Senior Architect Governance, Risk,

Similar presentations


Presentation on theme: "Cisco Confidential 1 © 2010 Cisco and/or its affiliates. All rights reserved. Security in Banking Emmanuel van de Geer Senior Architect Governance, Risk,"— Presentation transcript:

1 Cisco Confidential 1 © 2010 Cisco and/or its affiliates. All rights reserved. Security in Banking Emmanuel van de Geer Senior Architect Governance, Risk, Compliance and Security Standard Chartered Bank

2 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 2 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 2 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 2 2 © 2010 Cisco and/or its affiliates. All rights reserved. What are we covering

3 Cisco Confidential 3 © 2010 Cisco and/or its affiliates. All rights reserved. Criminals want to steal from Banks Banks succeed because customers trust them with their money Suttons Law “That’s where the money is”

4 Cisco Confidential 4 © 2010 Cisco and/or its affiliates. All rights reserved. Customers need to know that Banks are safe and secure This isn’t just to do with Information Security. It’s about how a Bank is run. Here For Good Standard Chartered Bank

5 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential © 2010 Cisco and/or its affiliates. All rights reserved. This is one reason why Information Security in Banks is different from other industries Information Security isn’t a technology problem, it is a business asset.

6 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential © 2010 Cisco and/or its affiliates. All rights reserved. Another reason why information security is different in Banking: Follow the Money

7 Cisco Confidential 7 © 2010 Cisco and/or its affiliates. All rights reserved. How Banks Work & Why Risk Is Important

8 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 8 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 8 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 8 8 © 2010 Cisco and/or its affiliates. All rights reserved.

9 Cisco Confidential 9 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 9 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 9 9 © 2010 Cisco and/or its affiliates. All rights reserved.

10 Cisco Confidential 10 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 10 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 10 Cisco Confidential 10 © 2010 Cisco and/or its affiliates. All rights reserved.

11 Cisco Confidential 11

12 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 12 Cisco Confidential 12 Cisco Confidential 12 © 2010 Cisco and/or its affiliates. All rights reserved. Risk management and information security are factors that determine how competitive and successful a Bank is.

13 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 13 Cisco Confidential 13 Cisco Confidential 13 © 2010 Cisco and/or its affiliates. All rights reserved. In the Banking industry, security isn’t just about the technology, rather, it is integrated with Risk Management, Compliance and Fraud. This combined space is called GRC

14 Cisco Confidential 14 © 2010 Cisco and/or its affiliates. All rights reserved. In 2000, online fraud was unheard of. Now it costs banks 60M in the USA alone.

15 Cisco Confidential 15 © 2010 Cisco and/or its affiliates. All rights reserved. & what a career in security can mean for you.

16 Cisco Confidential 16 © 2010 Cisco and/or its affiliates. All rights reserved. Today, I design systems that prevent and detect everything from hackers to money laundering.

17 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 17

18 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 18 Cisco Confidential 18 Cisco Confidential 18 © 2010 Cisco and/or its affiliates. All rights reserved. As the threats of theft and fraud have increased, so has the role of Information Security professionals.

19 Cisco Confidential 19 © 2010 Cisco and/or its affiliates. All rights reserved. Online Fraud The Insider Threat Cards and Transactions Denial of ServiceData Leakage Trading Fraud Payments Processing Information Theft

20 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 20 Motivation: who is it and why do they do it? Geopolitical - Government affiliated - NGO - Militant Hacktivism – Crowd Sourced - Anonymous - LulzSec - Occupy Extortion/financial gain - Criminals Targets: what do they target Asia (MY, KR, TW, CH) US Gov Israel, Palestine Banks in Brazil CIA Bank of America

21 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 21

22 Cisco Confidential 22 © 2010 Cisco and/or its affiliates. All rights reserved. Zeus and SpyEye

23 Cisco Confidential 23 © 2010 Cisco and/or its affiliates. All rights reserved.

24 Cisco Confidential 24 © 2010 Cisco and/or its affiliates. All rights reserved. But how bad is it?

25 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 25

26 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 26

27 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 27

28 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 28

29 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 29

30 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 30

31 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 31

32 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 32

33 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 33

34 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 34 Cisco Confidential 34 Cisco Confidential 34 © 2010 Cisco and/or its affiliates. All rights reserved. Recap Information in Banking: -People Steal Money, Money lives in Banks. -People Trust Banks & Reputation is key. -Fraud and Risk impact Bank profitability. Information Security is a business problem for Banks.

35 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 35 Cisco Confidential 35 Cisco Confidential 35 © 2010 Cisco and/or its affiliates. All rights reserved. Recap Online Fraud - Steadily increasing - Some way to go compared to other fraud activity Prediction: -Mobile Security will get worse -The end of SMS OTP


Download ppt "Cisco Confidential 1 © 2010 Cisco and/or its affiliates. All rights reserved. Security in Banking Emmanuel van de Geer Senior Architect Governance, Risk,"

Similar presentations


Ads by Google