The RBA bank completes implementation of an end-to-end system of measures of information security

ProgramBank completed implementation of a subsystem of information security in CB RBA bank, the press service of the company reported on November 20, 2012.

Background

For the purpose of ensuring banking system stability the Central Bank together with bank community developed a series of standards on information security of service station of BR IBBS. The System of Providing with Information Security (SPIS) constructed according to service station of BR IBBS represents the complex of organizational and technical protective measures based on the principles of the uniform management providing adequacy to real threats of information security within all banking organization.

Solution

In 2011 the management of CB RBA makes the decision on implementation of the standard of service station of BR IBBS, including and at the level of IT infrastructure. The project is implemented by ProgramBank company. Ensuring fulfillment of requirements of the standard of service station of BR IBBS 1.2-2010 with the automated banking system and requirements for personal data processing became the main objective of the project.

At the first stage specialists ProgramBank conducted examination of a status of IBS in bank. As a result of systems analysis of data retrieveds requirements to IBS for the purpose of information security support (SOIB) of bank were approved. Further, jointly with specialists of bank setup and testing of the subsystem of information security (SIS) and also training of the specialists of bank who are responsible for security were made.

On the end of preparatory work start of PIB in trial operation for testing of operability of IBS in general is performed. As you know, security always considerably complicates a system that reduces its efficiency and performance. As a result of settings of an algorithm of filtering of records increased security which practically does not affect operating activities of bank was provided. Now the subsystem works steadily in the mode of commercial operation.

Details

Within the project:

• The functionality of security with the regulated mechanisms of protection of news agency (Data assets) is provided.
• Personal data processing is given according to requirements of the federal legislation and also FSTEC and FSB of Russia.
• The security level of processing of news agency (Data assets) in IBS Gefest is raised.
• The mechanism of administration of IBS Gefest is implemented according to requirements of regulating documents of FSTEC and service station of BR IBBS 1.2 - 2010.
• Procedures of certification of the objects of informatization based on use of IBS Gefest for security requirements of information are simplified.
• Procedures of ensuring compliance of credit institution to requirements of service station of BR IBBS 1.2 - 2010 are facilitated.
• In addition, within the project specialists of ProgramBank company considerably worked out ergonomics of the module of administration of IBS Gefest that allowed to increase convenience of administration of a system in general.