ALEXANDRIA, Va. – In a recent guidance letter to corporate credit unions, NCUA said corporate credit unions have been diligent in their IT security measures, but this is one area where corporates can't get lax. ".the Office of Corporate Credit Unions IT examiners have focused on ensuring the adequacy of basic control elements such as firewalls, intrusion detection, penetration tests and sound network architectures. I am pleased to note that corporates have been diligent in this regard and that many sound control practices have been implemented," wrote Office of Corporate Credit Unions Director Kent Bukham. He went on to say that while basic IT security control elements are strong, the changing dynamics of corporate CU IT risk profiles' require they focus attention on the following critical security areas: Information Security Risk Assessment, Security Application Code Reviews, Service Provider Oversight & Contracts, Security Awareness of Employees, Change Management for Applications and Infrastructure, and Security for Remote Applications. The remainder of the letter detailed guidance in these areas that corporates can follow.
Complete your profile to continue reading and get FREE access to CUTimes.com, part of your ALM digital membership.
Your access to unlimited CUTimes.com content isn’t changing.
Once you are an ALM digital member, you’ll receive:
- Breaking credit union news and analysis, on-site and via our newsletters and custom alerts
- Weekly Shared Accounts podcast featuring exclusive interviews with industry leaders
- Educational webcasts, white papers, and ebooks from industry thought leaders
- Critical coverage of the commercial real estate and financial advisory markets on our other ALM sites, GlobeSt.com and ThinkAdvisor.com
Already have an account? Sign In Now
© 2024 ALM Global, LLC, All Rights Reserved. Request academic re-use from www.copyright.com. All other uses, submit a request to [email protected]. For more information visit Asset & Logo Licensing.
