The Design of a Risk and Vulnerability Assessment Procedure for a Banking Institution

Abstract

Regulations in banks are changing constantly and becoming stricter. Threats and technologies are improving. Most antivirus software update their virus definition when the malware is released and attacking. Banks need to define a good network perimeter to avoid these malwares to arrive the systems. Companies don’t consider information security a core aim. This can cause systems to be obsolete, leaving a potential system malfunctioning and vulnerable. Sometimes, information security professionals are not well prepared or trained, employees not being loyal to the company, segregation of duties and roles not well defined, are some of the challenges banks are facing. Key Terms - Information Security, Malware, Regulations, Threats, Vulnerable.