Presentation is loading. Please wait.

Presentation is loading. Please wait.

銀行及財務金融機構之資訊安 全防護指導方針 -ISO 13569 普華資安股份有限公司 資訊安全諮詢顧問 蔡興樺.

Published byHollie Clark Modified over 9 years ago

Similar presentations

Presentation on theme: "銀行及財務金融機構之資訊安 全防護指導方針 -ISO 13569 普華資安股份有限公司 資訊安全諮詢顧問 蔡興樺."— Presentation transcript:

1 銀行及財務金融機構之資訊安 全防護指導方針 -ISO 13569 普華資安股份有限公司 資訊安全諮詢顧問 蔡興樺

2 ISO 13569 Information Security Program Components Control Objectives and Suggested Solutions Implementing Cryptographic Controls

3 Information Security Program Components General duties Risk acceptance Insurance Audit Regulatory

4 Information Security Program Components Disaster recovery planning Information security awareness External Service Providers Cryptographic operations Privacy

5 Control objectives and suggested solutions Information classification Logical access control Audit trails Change control Computers

6 Control objectives and suggested solutions Networks Software Human factors Voice, telephone, and related equipment Facsimile and image

7 Control objectives and suggested solutions Electronic mail Paper documents Microform and other media storage Financial transaction cards Automated Teller Machines

8 Control objectives and suggested solutions Electronic Fund Transfers Checks Electronic commerce Electronic money Miscellaneous

9 Implementing Cryptographic Controls Applying encryption Implementing message authentication code Implementing digital signatures Key management Trusted third parties Disaster cryptographic and cryptographic disasters

10 敬請指教 普華資安:蔡興樺 Steven.Tsai@mail.pwcglobal.com.tw

Download ppt "銀行及財務金融機構之資訊安 全防護指導方針 -ISO 13569 普華資安股份有限公司 資訊安全諮詢顧問 蔡興樺."

Similar presentations

Chapter 8 Payment Systems: Getting the Money

Chapter 8 Payment Systems: Getting the Money
Chapter 10 Encryption: A Matter of Trust. Awad –Electronic Commerce 1/e © 2002 Prentice Hall 2 OBJECTIVES What is Encryption? Basic Cryptographic Algorithm.

Chapter 10 Encryption: A Matter of Trust. Awad –Electronic Commerce 1/e © 2002 Prentice Hall 2 OBJECTIVES What is Encryption? Basic Cryptographic Algorithm.
CONFIDENTIAL 1 Preparing for & Maintaining PCI Compliance.

CONFIDENTIAL 1 Preparing for & Maintaining PCI Compliance.
Nishidh, CISSP. To comply with Sarbanes oxley and other legislations To comply with industry standards and business partner requirements To protect.

Nishidh, CISSP. To comply with Sarbanes oxley and other legislations To comply with industry standards and business partner requirements To protect.
Information Technology – Guidelines for the Management of IT Security

Information Technology – Guidelines for the Management of IT Security
E-Business Risks Chapter Seven. E-Business Models EDI Web pages The online environment Distributed e-business and intranets Supply chain linkage Collaborative.

E-Business Risks Chapter Seven. E-Business Models EDI Web pages The online environment Distributed e-business and intranets Supply chain linkage Collaborative.
9 - 1 Computer-Based Information Systems Control.

9 - 1 Computer-Based Information Systems Control.
Made by Anila Bhatti DA Public School (O&A Levels) - Seaview.

Made by Anila Bhatti DA Public School (O&A Levels) - Seaview.
6/1/20151 Digital Signature and Public Key Infrastructure Course:COSC513-01 Instructor:Professor Anvari Student ID:106845 Name:Xin Wen Date:11/25/00.

6/1/20151 Digital Signature and Public Key Infrastructure Course:COSC Instructor:Professor Anvari Student ID: Name:Xin Wen Date:11/25/00.
Security Controls – What Works

Security Controls – What Works
Chapter 17 Controls and Security Measures

Chapter 17 Controls and Security Measures
Building a Successful Security Infrastructure

Building a Successful Security Infrastructure
Risks, Controls and Security Measures

Risks, Controls and Security Measures
Sanjay Goel, School of Business/Center for Information Forensics and Assurance University at Albany Proprietary Information 1 Unit Outline Qualitative.

Sanjay Goel, School of Business/Center for Information Forensics and Assurance University at Albany Proprietary Information 1 Unit Outline Qualitative.
1 透過 IT 電子商務和知識管 理應用之探討 指導老師:李富民 教授 報告者:許志傑 學號: 9654614 職 1A 報告日期 :97/01/14.

1 透過 IT 電子商務和知識管 理應用之探討 指導老師:李富民 教授 報告者:許志傑 學號: 職 1A 報告日期 :97/01/14.
Brooks Evans – CISSP-ISSEP, Security+ IT Security Officer Arkansas Department of Human Services.

Brooks Evans – CISSP-ISSEP, Security+ IT Security Officer Arkansas Department of Human Services.
Elias M. Awad Third Edition ELECTRONIC COMMERCE From Vision to Fulfillment 13-1© 2007 Prentice-Hall, Inc ELC 200 Day 23.

Elias M. Awad Third Edition ELECTRONIC COMMERCE From Vision to Fulfillment 13-1© 2007 Prentice-Hall, Inc ELC 200 Day 23.
Elias M. Awad Third Edition ELECTRONIC COMMERCE From Vision to Fulfillment ELC 200 Day 24.

Elias M. Awad Third Edition ELECTRONIC COMMERCE From Vision to Fulfillment ELC 200 Day 24.
人力資源管理 報告者:萬通人力資源顧問股份有限公司 侯 佑 霖 日期: 96 年 11 月 22 日.

人力資源管理 報告者:萬通人力資源顧問股份有限公司 侯 佑 霖 日期: 96 年 11 月 22 日.
Alter – Information Systems 4th ed. © 2002 Prentice Hall 1 E-Business Security.

Alter – Information Systems 4th ed. © 2002 Prentice Hall 1 E-Business Security.

Similar presentations

Ads by Google