Risk
3/21/2011
04:00 PM
Connect Directly
LinkedIn
Google+
Twitter
RSS
E-Mail
50%
50%

How Wall Street Works With The Feds

Banks and other financial firms learn to share sensitive cybersecurity information with federal agencies.

For the most part, the relationship between the federal government and financial services industry isn't one built on mutual trust. The government has been criticized for being too hands-off, even permissive, but it's hardly a close-knit partnership.

When it comes to cybersecurity, however, the dynamic is different. Financial services companies are sharing information about sensitive IT security issues with the government, and federal agencies are sharing data and intelligence on cybersecurity threats with banks, brokerage firms, and other Wall Street institutions.

The broker of this public-private exchange is the Financial Services Information Sharing and Analysis Center (FS-ISAC). Created in 1999 after a presidential directive called for information sharing between the feds and the private sector, FS-ISAC has a security operations center and a Web portal that its members use to monitor computer threat feeds from a variety of commercial and government sources.

FS-ISAC members use the portal to submit details on cyberattacks they have experienced, including how the attacks were detected and their companies responded. Submissions to the portal, for example, might provide the IP addresses associated with the source of attempted intrusions, and they often center on topics such as fraud activity and malware analysis. This information is shared within the industry, as well as with the Treasury Department, FBI, Secret Service, and Department of Homeland Security.

FS-ISAC isn't a government entity, nor is it overseen by a federal agency. It's a nonprofit owned by its private-sector member companies and run by a board of directors drawn from its membership.

The Web portal serves as a clearinghouse of information such as alerts and bulletins from US-CERT and the Homeland Security and threat feeds from security vendors such as VeriSign. FS-ISAC also uses it to send bulletins with best practices and other information to members.

The portal can be customized to present the alerts and advisories of most interest to members. Dan DeWaal, first VP and chief security officer with Options Clearing Corp. (OCC), the world's largest equity derivatives clearinghouse and a founding member of FS-ISAC, says his information security team monitors threats and system vulnerabilities, while his business continuity team examines feeds that deal with physical and operational issues.

Previous
1 of 3
Next
Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Cartoon
Current Issue
Dark Reading Tech Digest, Dec. 19, 2014
Software-defined networking can be a net plus for security. The key: Work with the network team to implement gradually, test as you go, and take the opportunity to overhaul your security strategy.
Flash Poll
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2014-5208
Published: 2014-12-22
BKBCopyD.exe in the Batch Management Packages in Yokogawa CENTUM CS 3000 through R3.09.50 and CENTUM VP through R4.03.00 and R5.x through R5.04.00, and Exaopc through R3.72.10, does not require authentication, which allows remote attackers to read arbitrary files via a RETR operation, write to arbit...

CVE-2014-7286
Published: 2014-12-22
Buffer overflow in AClient in Symantec Deployment Solution 6.9 and earlier on Windows XP and Server 2003 allows local users to gain privileges via unspecified vectors.

CVE-2014-8896
Published: 2014-12-22
The Collaboration Server in IBM InfoSphere Master Data Management Server for Product Information Management 9.x through 9.1 and InfoSphere Master Data Management - Collaborative Edition 10.x through 10.1, 11.0 before FP7, and 11.3 and 11.4 before 11.4 FP1 allows remote authenticated users to modify ...

CVE-2014-8897
Published: 2014-12-22
Cross-site scripting (XSS) vulnerability in the Collaboration Server in IBM InfoSphere Master Data Management Server for Product Information Management 9.x through 9.1 and InfoSphere Master Data Management - Collaborative Edition 10.x through 10.1, 11.0 before FP7, and 11.3 and 11.4 before 11.4 FP1 ...

CVE-2014-8898
Published: 2014-12-22
Cross-site scripting (XSS) vulnerability in the Collaboration Server in IBM InfoSphere Master Data Management Server for Product Information Management 9.x through 9.1 and InfoSphere Master Data Management - Collaborative Edition 10.x through 10.1, 11.0 before FP7, and 11.3 and 11.4 before 11.4 FP1 ...

Best of the Web
Dark Reading Radio
Archived Dark Reading Radio
Join us Wednesday, Dec. 17 at 1 p.m. Eastern Time to hear what employers are really looking for in a chief information security officer -- it may not be what you think.