IT Policies & Procedures
10.29.2014 - 10.29.2014 (tech)
- Stream the recording
- Download the presentation
More than ever, Credit Unions are being challenged to stay current with new IT regulatory requirements and a dynamic security threat landscape. This affects what controls Credit Unions establish to stay in step with those changes, and it specifically affects the development and/or modification of IT-related policy. While there are increasing demands in regulatory compliance, this does not always correlate with an increase in your operating budget.
In this roundtable, we will examine two approaches for dealing with the increased regulatory burdon. For credit unions who wish to manage the process internally, Elizabeth Allison will present a 5 Step, Do-It-Yourself guide to developing the framework for your security program, writing the policies, procedures, standards, guidelines, and how to implement them in your credit union.
Alternatively, Michael Barrack will share how credit unions without sufficient internal resources can work with an outside vendor to meet these regulatory challenges with command and confidence.
Elizabeth Allison, CISA, CRISC, CFSA, Sr. Information Security Analyst, Keesler FCU
As the Sr. Information Security Analyst at Keesler Federal Credit Union, Elizabeth is responsible for development, management, and implementation of the Information Technology Security Program. Elizabeth has delivered many presentations on the successful implementation of IT Risk Management, Security Framework, and Employee Security Awareness Training programs. She has over 14 years of experience in Internal Audit, Information Security, and Risk Management, and has served on the board of directors for her local ISACA, Institute of Internal Auditors (IIA), and InfraGard chapters.
After serving on the IT recovery team after Hurricane Katrina, she retained her experiences and perfected the art of creating a policy and procedures framework that provides value in a real life environment and still meets regulatory requirements. She has designed and implemented numerous programs and processes including security incident response, and change management. She has performed and facilitated control and compliance reviews, risk assessments, social engineering, and cyber-crime table top exercises.
Michael Barrack, Director – IT Security and Compliance, D+H
As Director of IT Security and Compliance, Michael Barrack provides IT security and risk and compliance consulting services for community financial institution clients across the United States. With more than 25 years of serving community Banks in Southern California, Michael brings a keen understanding of how our clients use technology to support the business, and what the regulators expect of Banks and Credit Unions as it relates to IT-related compliance.
Having been the accountable Executive in IT regulatory examinations as both a banker and service provider to Banks and Credit Unions, he has the experience and insight to know how best to prepare for and respond to such exams, which Compushare has incorporated in its offerings and consulting services. Michael is also responsible for all IT related compliance programs within Compushare.
Prior to joining Compushare in 2007, Barrack served as Chief Executive Officer at iPay Technologies, LLC, a Kentucky based bill payment processing company where he led the company through a period of explosive growth, tripling revenue and increasing profitability and the client base of community banks and credit unions substantially. A veteran to the banking industry, Barrack has led technology and compliance efforts at financial institutions over the course of his career including East West Bank, where he served as Director of Information Systems, and Community Bank, where he led the Information Technology Group as Chief Information Officer.
Barrack resides in Henderson Nevada and holds a Masters of Business Administration at University of California, Los Angeles. He received his undergraduate degree at Carleton College, graduating Magna Cum Laude.
Cross Council Event Schedule
M & BD
|ROUNDTABLE||Free to Council Members||Register|