| Customers: Transcreditbank Moscow; Financial services, investments and audit Contractors: Asteros Product: Projects of external audit of IT and security (in tch PCI DSS and SUIB)Project date: 2010/10
|
Transcreditbank together with Asteros completed the project of improvement of a system of information security support. Requirements of the Standard of the Bank of Russia in information security field – service station of BR IBBS-1.0-2008 are as a result implemented, risks of violation of information security are reduced.
Background
In 2008 the Central Bank of Russian Federation issued the requirements of the Standard of the Bank of Russia directed to stability augmentation of work of banking organizations, determination of efficiency of the used measures for security and also responsibility for information security support (cybersecurity).
For accomplishment of the set requirements, Transcreditbank initiated the project on improvement of a system of providing Information Security. As the contractor the Asteros company is selected.
Stage one and another
The first stage specialists of Asteros conducted examination of a status of cybersecurity at head office and a number of bank branches. Recommendations about improvement of a system of information security support of bank were developed.
At the second stage, according to provisions of service station of BR IBBS-1.0-2008 the packet of organizational and administrative and normative and methodological documents on information security was developed and approved, roles and duties of the employees of the bank who are responsible for information security are defined.
Security - not a block
From the customer
"Information security support of any company is a continuous process. Even having created the most perfect system of information security support, it is necessary to be engaged in its assessment and development constantly. As a result of the works performed jointly with specialists of Asteros we created the necessary normative and methodological base for providing a comprehensive protection from threats providing application of both organizational, and program and technical methods of protection of a banking information system", – Valery Kapitonov, the head of department of information security of Transcreditbank notes.
During trial operation of a system by Asteros company offers on implementation of program and technical measures and means of protecting, including the systems of prevention of leakages of confidential data, monitoring of events of cybersecurity, control of the used means and systems of protection, etc. are developed. Further system deployment in bank branches is planned.
From integrator
Transcreditbank – one of the largest domestic banks, whose cybersecurity system will conform completely to requirements of the Standard of the Bank of Russia. It is important to note that at the customer not only means of protecting, but also an information security management system are implemented. It provides continuous development of a package of measures, adequately protecting banking business, allowing the customer to concentrate on the main business operations", – Ivan Burdelo, the director of the department of information security of KABEST company of the Asteros group emphasizes.
| The site content is translated by machine translation software powered by PROMT. The machine-translated articles are not always perfect and may contain errors in vocabulary, syntax or grammar. Read original article If you find inaccuracies or errors in the results of machine translation, please write to editor@tadviser.ru. We will make every effort to correct them as soon as possible. |