Archive Links

Consumer Archive
CU System Archive
Market Archive
Products Archive
Washington Archive
150x172_CUEffect.jpg
Contacts
LISA MCCUEVICE PRESIDENT OF COMMUNICATIONS
EDITOR-IN-CHIEF
MICHELLE WILLITSManaging Editor
RON JOOSSASSISTANT EDITOR
ALEX MCVEIGHSTAFF NEWSWRITER
TOM SAKASHSTAFF NEWSWRITER

News Now

CU System
Top priority for CUs must be cybersecurity, advises Council white paper
WESTBURY, N.Y. (7/16/14)--Unless the goal of protecting sensitive data is paramount to a credit union's operation, it's likely not doing enough, according to a new white paper released Tuesday by the CUNA Technology Council.

The paper discusses the importance of financial institutions making cybersecurity a top priority, while also outlining the value of educating members, protecting their information, communicating effectively should a breach occur and understanding cybersecurity laws and regulations.  

Called "Cybersecurity Preparedness: Taming the Shock and Awe of Big Breaches," it's the first white paper in a series of four scheduled for 2014 dedicated to security.  

"These big security leaks show we need to take cybersecurity preparedness seriously and do more," said Kevin Prince, principal technology strategist for D+H Compushare, a CUNA Strategic Services alliance provider. "You'll never be 100% secure, but you have to manage it as carefully as possible with the appropriate tools."

The paper first calls on Bill Podborny, chief security officer of $8.2 billion-asset Alliant CU in Chicago, to describe "cybersecurity preparedness." Podborny believes to be prepared means identifying vulnerabilities, understanding where attacks may come from, taking steps to lessen or eliminate exposure and being prepared to respond to any situation as quickly as possible.

Authors of the paper illustrate how to make cybersecurity preparedness a core function of the credit union with examples of what credit unions are already doing to keep security strong.

At Michigan Tech Employees FCU, Houghton, Mich., with $60 million in assets, for example, leaders have dedicated resources that work specifically to bolster security, an action recommended by many U.S. regulatory bodies.

"At a certain point it makes sense to separate these departments to ensure security resources don't diminish in times when the IT department is fighting for the same resources," said Justin Store, information technology services director at Michigan Tech Employees FCU.

Finally, to strengthen cybersecurity, Prince suggests credit unions should:
  • Realize what they're doing today likely isn't adequate, and won't be adequate tomorrow, as threats are constantly shifting and changing;
     
  • Conduct regular and thorough cybersecurity risk assessments and document the findings;
     
  • Mitigate risks as much as possible;
     
  • Stay on top of current threats and future trends in cybersecurity; and
     
  • Consider outsourcing to a community cloud arrangement for IT cybersecurity.
To download the white paper, use the link.
RSS





print
News Now LiveWire
#creditunions celebrate #EarthDay2015 by being green aware with e-statements, hosting shred events, planting trees
11 hours ago
From @WSJ: 33% of companies say it took them more than 1 yr to discover a data breach. http://t.co/a0MxV68X6t http://t.co/lkglx6WvKs
15 hours ago
.@CAMCouncil taps into @MICreditUnions' career, tech training resources http://t.co/sotnfCUgIo
16 hours ago
#Inflation ticks up in March, still relatively flat #NewsNow #Market http://t.co/PyAvwdkJ4M
16 hours ago
#NewsNow Ill. league groups elect board, exec officers http://t.co/KAG8MtbGsv
17 hours ago