| Customers: Khovansky of joint stock bank Moscow; Financial services, investments and audit Contractors: DialogNauka Product: Projects of external audit of IT and security (in tch PCI DSS and SUIB)Project date: 2015/01 - 2015/05
|
On July 10, 2015 the DialogNauka company announced conformity assessment project completion to requirements of an information security standard of the Bank of Russia for JSB Khovansky and prepared the set of guidelines for improvement of a system of information security support of the customer.
Project Tasks
For maintenance of reputation of reliable bank, ensuring appropriate level of security of data assets of bank and these clients, bank representatives Khovansky addressed to JSC DialogNauka and, after consultations with specialists of the company, made the decision on carrying out audit on compliance to the standard of security of the Bank of Russia by forces of the system integrator.
Khovansky bank, 2013
Project Progress
As agreed by the parties conformity assessment is carried out for head office of the customer and represented 4 stages of execution:
- preparation of organization for evaluating;
- verification of documentation on availability of information necessary for accounting at assessment of indicators and formation of level of compliance of information security to the standard of service station of BR IBBS-1.0;
- direct conformity assessment to requirements of an information security standard of the Bank of Russia in the territory of JSB Khovansky;
- preparation of the report with the detailed description of the carried-out works and complex recommendations about improvement and improvement of a system of information security support of bank.
The first stage of works - basic for determination of the regulations and an order of rendering services at inspection of a status of information security according to the standard of service station of BR IBBS, the approval of the work plan passed quickly and in the normal mode.
The subsequent collecting and the analysis of documents and documentary evidences of bank on possible sources of information for assessment of indicators and formation of conformity assessment of information security intended for plan development of evaluating compliance on site.
Further on the basis of the documents provided by bank, specialists of JSC DialogNauka estimated the level of information security and a management system of cybersecurity of bank, level of awareness of staff of JSB Khovansky on the available risks and threats of information security.
The final stage - formation of the itemized statement on the basis of data retrieveds and preparation of recommendations about elimination of discrepancies and improvement of an information security system according to the recommendations of the standard of the Bank of Russia.
Project Results
Anton Svintsitsky, the head of department of consulting of JSC DialogNauka, noted: "For banking institution passing of assessment on compliance to the standard of the Bank of Russia is evident criterion of effective management of information security and shows a responsible attitude of the organization to control and improvement of processes of providing Information Security. We are glad that JSB Khovansky addressed us for passing of assessment, and I would like to note that our client showed consideration for results of assessment and recommendations about improvement made by our specialists. I consider that we very productively worked together with the staff of department of information security of bank and I hope that JSB Khovansky will and consider in the future our company as partner in problem solving of information security".
| The site content is translated by machine translation software powered by PROMT. The machine-translated articles are not always perfect and may contain errors in vocabulary, syntax or grammar. Read original article If you find inaccuracies or errors in the results of machine translation, please write to editor@tadviser.ru. We will make every effort to correct them as soon as possible. |