Re: Bank Assessment

From: lists (lists@securitydocs.com)
Date: Thu Apr 22 2004 - 23:32:39 EDT

• Next message: Blake Wiedman: "RE: Bank Assessment"
• Previous message: Amit Deshmukh: "RE: Bank Assessment"
• In reply to: Ivan Arce: "Re: Bank Assessment"
• Next in thread: c0d3r@cotse.net: "RE: Bank Assessment"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

You may also find the following documents of use:

Gramm-Leach-Bliley Act Title V Complexities and Compliancy for the Community
Banking Sector
http://www.securitydocs.com/thread/1277

Unique Characteristics of Ecommerce Technologies and their Effects upon
Payment Systems
http://www.securitydocs.com/thread/1291

----- Original Message -----
From: "Ivan Arce" <ivan.arce@coresecurity.com>
To: <pen-test@securityfocus.com>
Sent: Wednesday, April 21, 2004 4:29 PM
Subject: Re: Bank Assessment

> In addition to FFIEC guidelines you might find some NIST documents
usefull:
>
> SP800-26 "Security Self-Assessment Guide for Inforamtion Technology
Systems"
> http://csrc.nist.gov/publications/nistpubs/800-26/sp800-26.pdf
>
> and
>
> SP800-42 "Guideline on Network Security Testing"
> http://csrc.nist.gov/publications/nistpubs/800-42/NIST-SP800-42.pdf
>
> -ivan
>
>
> Blake Wiedman wrote:
>
> > You can find the answers to most of your questions including guidelines
> > here http://www.ffiec.gov/
> >
> > My employer uses the guidelines as the basis for all of our banking
> > clients.
> >
> >
> > Blake Wiedman
> > Security Technician
> > Icons Inc.
> > www.iconsinc.com
> > 732.309.6038
> >
> > -----Original Message-----
> > From: Joe Smith [mailto:joey@r00t66.com]
> > Sent: Monday, April 19, 2004 2:40 PM
> > To: pen-test@securityfocus.com
> > Subject: Bank Assessment
> >
> >
> > I'm looking for any good links with regard to Banking Institutions..
> > Security assessments, pen-testing, special needs etc. I know they are
> > big on policies and procedures.
> >
> >
> > ------------------------------------------------------------------------
> > ------
> > Ethical Hacking at the InfoSec Institute. Mention this ad and get $545
> > off
> > any course! All of our class sizes are guaranteed to be 10 students or
> > less
> > to facilitate one-on-one interaction with one of our expert instructors.
> > Attend a course taught by an expert instructor with years of
> > in-the-field
> > pen testing experience in our state of the art hacking lab. Master the
> > skills
> > of an Ethical Hacker to better assess the security of your organization.
> > Visit us at:
> > http://www.infosecinstitute.com/courses/ethical_hacking_training.html
> > ------------------------------------------------------------------------
> > -------
> >
> >
> >
>
> --------------------------------------------------------------------------

----
> > Ethical Hacking at the InfoSec Institute. Mention this ad and get $545
off
> > any course! All of our class sizes are guaranteed to be 10 students or
less
> > to facilitate one-on-one interaction with one of our expert instructors.
> > Attend a course taught by an expert instructor with years of
in-the-field
> > pen testing experience in our state of the art hacking lab. Master the
skills
> > of an Ethical Hacker to better assess the security of your organization.
> > Visit us at:
> > http://www.infosecinstitute.com/courses/ethical_hacking_training.html
>
> --------------------------------------------------------------------------
-----
> >
>
>
> -- 
> ---
> To strive, to seek, to find, and not to yield.
> - Alfred, Lord Tennyson Ulysses,1842
>
> Ivan Arce
> CTO
> CORE SECURITY TECHNOLOGIES
>
> 46 Farnsworth Street
> Boston, MA 02210
> Ph: 617-399-6980
> Fax: 617-399-6987
> ivan.arce@coresecurity.com
> www.coresecurity.com
>
> PGP Fingerprint: C7A8 ED85 8D7B 9ADC 6836  B25D 207B E78E 2AD1 F65A
>
>
>
> --------------------------------------------------------------------------
----
> Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off
> any course! All of our class sizes are guaranteed to be 10 students or
less
> to facilitate one-on-one interaction with one of our expert instructors.
> Attend a course taught by an expert instructor with years of in-the-field
> pen testing experience in our state of the art hacking lab. Master the
skills
> of an Ethical Hacker to better assess the security of your organization.
> Visit us at:
> http://www.infosecinstitute.com/courses/ethical_hacking_training.html
> --------------------------------------------------------------------------
-----
>
------------------------------------------------------------------------------
Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off
any course! All of our class sizes are guaranteed to be 10 students or less
to facilitate one-on-one interaction with one of our expert instructors.
Attend a course taught by an expert instructor with years of in-the-field
pen testing experience in our state of the art hacking lab. Master the skills
of an Ethical Hacker to better assess the security of your organization.
Visit us at:
http://www.infosecinstitute.com/courses/ethical_hacking_training.html
-------------------------------------------------------------------------------

• Next message: Blake Wiedman: "RE: Bank Assessment"
• Previous message: Amit Deshmukh: "RE: Bank Assessment"
• In reply to: Ivan Arce: "Re: Bank Assessment"
• Next in thread: c0d3r@cotse.net: "RE: Bank Assessment"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:53:52 EDT