WHY PARTICIPATE?
The term “cyber security” has received a lot of recent media attention. By definition, cyber security is simply protecting accountholder data and money on the Internet. With growing reliance on electronic service delivery and the surge of identity/data theft, concern has been elevat-ed to a critical level. Capitalizing on technology offers tremendous new business and fee-based opportunities, however, financial institutions must be more prepared than ever to manage and maximize cyber security solu-tions. This series offers a selection of topics focused on the remarkable benefits and serious challenges of technol-ogy. From regulatory guidance, to risk assessment, to product and deployment strategies, this series provides an informed, practical approach to today's cyber trends and challenges.
THREE REGISTRATION OPTIONS 1. LIVE WEBINAR
The LIVE WEBINAR registration option allows you to have one telephone connection for the audio portion and one Internet connection (from a single computer terminal) to view online visuals as the presentation is delivered.
You may have as many people as you like listen from your office speaker phone. Registrants receive a toll-free num-ber and pass code that allows entrance to the seminar. The session is approximately 90 minutes, including ques-tion-and-answer sessions. Seminar materials are sent prior to the broadcast along with hookup instructions. Your pin number, hookup instructions, and handouts are e-mailed to you. You need the most current version of Adobe Acro-bat Reader available free at www.adobe.com.
2. ON-DEMAND WEB LINK
Can't attend the live webinar? The on-demand web link is a recording of the live event including audio, visuals, and handouts. You even receive the presenter's e-mail address so you may ask follow-up questions. Within five business days following the webinar, you are provided with a web link that can be viewed anytime for the next six months. This link expires six months after the live program date. 3. BOTH LIVE WEBINAR AND ON-DEMAND WEB LINK Includes options 1 and 2 above.
Listen on your iPad, iPhone, or Android (Instructions will be emailed to you with the on-demand link).
Tracy McQuinn, Senior Vice President Valerie Johnston, Vice President Melinda McClelland, Vice President Rebecca Ridgeway, Administrative Assistant
Jennifer Nika, Administrative Assistant Department of Education & Special Events 800/736-2224 or 217/529-2265 Fax: 217/585-8738
Terry Griffin, Chicago Area Vice President 708/714-3333
MAXIMIZING CYBER SECURITY
SOUNDNESS & MINIMIZING INCIDENTS January 14, 2016
OUTSOURCING TECH SERVICES: REGULATIONS, EXAMINER EXPECTATIONS & ACTIONS FOR VENDOR MANAGEMENT March 22, 2016
FFIEC CYBER SECURITY RISK ASSESSMENTS: RECENT FINDINGS & RECOMMENDED ACTIONS June 8, 2016
MOBILE REMOTE DEPOSIT STRATEGIES: TECHNOLOGY, DEPLOYMENT MODELS & RISKS September 13, 2016
CUSTOMER AUTHENTICATION & VALIDATION: THE NEW NORMAL IN RISK MITIGATION
November 2, 2016
MEETING FEDERAL REQUIREMENTS FOR TECH-BASED MARKETING: WEBSITES, SOCIAL MEDIA, ROBO CALLS & MORE December 13, 2016
Introduction
Dates and Time
For More Information
All Cyber Security Series webinars are from 2 - 3:30 p.m.
Criminals and cyber fraudsters are not resting on their lau-rels. In response, regulatory requirements and examination scrutiny of cyber security controls continues to be top-of-mind for executives, board members, and examiners. What are the key strategies to minimize exposure to security incidents and manage compliance risk? This webinar provides updated in-formation from the latest FFIEC cyber security exams, up-to-date statistics from breach analysis reports published by leading industry security firms, and field experience in pene-tration testing, fraud review, and computer forensics. Participants learn about the latest cyber crime and payment fraud threats and the regulatory efforts to address them. This program also gives insight on how financial institutions can effectively address ongoing and emerging threats.
MEET YOUR WEBINAR LEADER
Randy Romes has been a consultant at CliftonLarsonAllen since 1999 and brings a strong background in computer technology, physics, and education. As a principal in the In-formation Security Services Group, Romes leads a team of technology and industry specialists and is responsible for the continuing development of the open-source, Unix, and Windows applications used in security audits. Romes has been involved in developing numerous leading-edge hack-ing/testing methods and security service offerings. A featured speaker at national information and security man-agement conferences, Romes holds multiple certifications, a master's in educational technology from the University of Saint Thomas, and a bachelor's in education from the Uni-versity of Wisconsin – Madison. In addition, he is an instructor at the Graduate School of Banking at the Univer-sity of Colorado in Boulder.
The FFIEC details what your IT program must include, what it is required to mitigate, and what it expects in order to en-sure ongoing vendor due diligence. No doubt outsourcing critical functions to third-party vendors delivers heightened operational risk and commensurate examiner scrutiny. Per the FFIEC's “Outsourcing Technology Services” booklet, guid-ance is the roadmap financial institutions should follow “to establish, manage, and monitor IT outsourcing relation-ships.” This webinar provides an overview of governing regulations, examiner expectations, and best-practice vendor management sustained governance.
MEET YOUR WEBINAR LEADER
Brian Vitale, NCCO, CAMS-Audit Compliance Advisory Ser-vices, earned his political science degree from North Central College in 1996 and an MBA from the University of Notre Dame in 2014. Vitale was recruited by the National Security Division of the FBI where he specialized in counterterrorism and foreign counterintelligence. In addition, he is a decorat-ed veteran who servdecorat-ed in Guantanamo Bay, Cuba in the early 1990s. Subsequent to the FBI, Vitale spent many years in banking and finance where his skills led him to the field of Global Operational Risk Management. He has more than 20 years of banking, finance, and investigative experience. In July 2011, he joined a community financial institution and currently serves as its chief risk and compliance officer. He speaks nationally on BSA, anti-money laundering, enter-prise risk management, cybersecurity, and strategy.
Cyber security is now considered the number one risk faced by financial institutions. Cyber security preparedness and risk management are key areas of focus during up-coming exams. This webinar review case study results from first and second quarter regulatory exams with an eye toward the FFIEC cyber security governance require-ments and how financial institutions are successfully utilizing the FFIEC Cybersecurity Assessment Tool (CAT). Join us for practical advice on how to utilize the CAT to define inherent risk, measure control effectiveness (i.e., maturity), and assess residual risk.
MEET YOUR WEBINAR LEADER
Randy Romes has been a consultant at CliftonLarsonAllen since 1999 and brings a strong background in computer technology, physics, and education.
As a principal in the Information Security Services Group, Romes leads a team of technology and industry specialists and is responsible for the continuing development of the open-source, Unix, and Windows applications used in secu-rity audits. Romes has been involved in developing
numerous leading-edge hacking/testing methods and secu-rity service offerings. A featured speaker at national information and security management conferences, Romes holds multiple certifications, a master's in educational tech-nology from the University of Saint Thomas, and a
bachelor's in education from the University of Wisconsin – Madison. In addition, he is an instructor at the Graduate School of Banking at the University of Colorado in Boulder.
MAXIMIZING CYBER SECURITY SOUNDNESS & MINIMIZING INCIDENTS
January 14, 2016
OUTSOURCING TECH SERVICES:
REGULATIONS, EXAMINER EXPECTATIONS & ACTIONS FOR VENDOR MANAGEMENT
March 22, 2016
FFIEC CYBER SECURITY RISK ASSESSMENTS: RECENT FINDINGS & RECOMMENDED ACTIONS
June 8, 2016
Mobile continues to revolutionize remote deposit capture (RDC). Mobile RDC users now outnumber desktop RDC users 40 to 1, and 70% of financial institutions are deploying business mobile RDC within the next year. Deployment and adoption of mobile RDC (mRDC) among consumers and micro/small businesses will continue to grow dramatically during the next 12 months. Checks remain a preferred method of payment for most small businesses, and new low-cost commercial mRDC solutions (along with smarter risk-management tools) are prompting many financial insti-tutions to expand their RDC offerings among both consumers and the 84% of businesses in the U.S. with less than $1 mil-lion in annual revenues. In fact, some institutions consider mRDC a necessary cost-cutting prerequisite to meaningful branch transformation. Join us for a fact check on mRDC fraud losses and benchmarks, a reassessment of mRDC eligi-bility and deposit limits, and a strategic look at the untapped potential of mRDC as a mass-market deposit-gathering tool.
MEET YOUR WEBINAR LEADER
Lee Wetherington, AAP, is director of strategic insight for Jack Henry & Associates®. He directs the development of actionable insight and strategy for the financial services field. To this end, he creates programs, presentations, and articles designed to orient and educate financial executives on the trends and implications of new technologies. Wetherington has delivered more than 400 keynotes na-tionwide focusing upon opportunities and challenges in payments and the online/mobile/social channels, and is widely renowned for his unique style of comedic delivery. His articles and commentary have been widely published inthe financial services arena. He received bachelor de-grees in economics and English from Duke University in 1990, and, in 1993, he completed graduate studies at Emory University. In 1995, he earned the distinguished Ac-credited ACH Professional (AAP) certification from the National Automated Clearing House Association (NACHA).
Gone are the days when authenticating your accountholders included affirmation of mother's maiden name, Social Secu-rity number, and date of birth. As the industry shifts to increased mobile and other remote electronic technologies, accountholder authentication and validation is no longer a table-stakes exercise. Rather, it is a strategically important enterprise risk-mitigation process. Unfortunately, fraudsters evolve along with technology. This webinar identifies a proactive and evolving accountholder authentication and validation framework through enhanced and proven valida-tion procedures to thwart account takeover, identity theft, and institution monetary and reputational loss.
MEET YOUR WEBINAR LEADER
Brian Vitale, NCCO, CAMS-Audit Compliance Advisory Ser-vices, earned his political science degree from North Central College in 1996 and an MBA from the University of Notre Dame in 2014. Vitale was recruited by the National Security Division of the FBI where he specialized in counterterrorism and foreign counterintelligence. In addition, he is a decorated veteran who served in Guantanamo Bay, Cuba in the early 1990s. Subsequent to the FBI, Vitale spent many years in banking and finance where his skills led him to the field of Global Operational Risk Management. He has more than 20 years of banking, finance, and investigative experience. In July 2011, he joined a community financial institution and currently serves as its chief risk and compliance officer.
Consumers continue to spend more time and perform more transactions online, so your institution needs to effectively advertise using online media. However, there are overlapping regulatory and best practice guidelines to ensure your mar-keting is compliant. From remarmar-keting and cookie
advertising campaigns to Facebook promotions or auto-dialer telephone campaigns, your institution must successfully man-age the risks of tech-based marketing before jumping in with both feet. Further, the potential for claims of unfair, decep-tive, or abusive acts or practices (UDAAP) increases the need to use upfront, clear, and transparent marketing practices. This webinar identifies common issues and outlines how to use technology in a compliant manner to reach new and ex-isting consumers.
MEET YOUR WEBINAR LEADER
Steven Van Beek, Esq., NCCO, is an attorney at Howard & Howard Attorneys PLLC, where he concentrates his practice in the area of financial regulations. He has intimate knowl-edge of the operational issues facing financial institutions and the best practices they can follow to reduce compli-ance, strategic, and reputation risks. He is a frequent speaker at national and regional industry events delivering information on new and existing laws and regulations im-pacting financial institutions. Prior to joining Howard & Howard, he served as the vice president of Regulatory Compliance and senior federal counsel at the National As-sociation of Federal Credit Unions (NAFCU). He received his bachelor's from Hope College, Holland, MI, and his J.D. from George Mason University School of Law, Fairfax, VA, and is a member of the American Bar Association.
MOBILE REMOTE DEPOSIT STRATEGIES: TECHNOLOGY, DEPLOYMENT MODELS & RISKS
September 13, 2016
CUSTOMER AUTHENTICATION & VALIDATION: THE NEW NORMAL IN RISK MITIGATION
November 2, 2016
MEETING FEDERAL REQUIREMENTS FOR TECH-BASED MARKETING: WEBSITES, SOCIAL MEDIA, ROBO CALLS & MORE
Please check below which session(s) you are registering for.
___ January 14, 2016 – “Maximizing Cyber Security Soundness & Minimizing Incidents”
___ March 22, 2016 – “Outsourcing Tech Services: Regulations, Examiner Expectations & Actions for Vendor Management”
___ June 8, 2016 – “FFIEC Cyber Security Risk Assessments: Recent Findings & Recommended Actions” ___ September 13, 2016 – “Mobile Remote Deposit Strategies: Technology, Deployment Models & Risks” ___ November 2, 2016 – “Customer Authentication & Validation: The New Normal in Risk Mitigation ” ___ December 13, 2016 – “Meeting Federal Requirements for Tech-Based Marketing:
Websites, Social Media, Robo Calls & More” Name
Bank Address City/State/Zip
Phone Fax: Email
(E-mail address required for registration). Check here if you are unable to receive your materials via e-mail and hard copies will be mailed to you. R
Reeggiisstteerr bbyy PPhhoonnee,, FFaaxx oorr MMaaiill
Fax this registration form to: 217/585-8738 Call for more information: 800/736-2224
Mail Registration to: CBAI Education Department, 901 Community Drive, Springfield, IL 62703
You can choose to participate in the Cyber Security Telephone/Webcasts as a series or as one or more stand-alone webinars.
CYBER SECURITY TELEPHONE/WEBCAST SERIES (ALL SIX SESSIONS)
INDIVIDUAL SESSION
**OOnnllyy ffiinnaanncciiaall iinnssttiittuuttiioonnss//ffiirrmmss eelliiggiibbllee ffoorr CCBBAAII mmeemmbbeerrsshhiipp..
Registration Forms and Fees
Purchase (Check one)
Training Options
(Registration includes one location hook-uup) CBAI Member Non-MMember*
Live Webinar $259 $459
On-Demand Link $259 $459
Special Pricing for Live Webinar & On-DDemand Link $359 $559 Purchase
(Check one) (Registration includes one location hook-uup)Training Options CBAI Member Non-MMember*
Live Webinar $1,554 $2,754
On-Demand Link $1,554 $2,754