Citrix Bleed hacks flag IT asset inventory shortfalls
To know what needs urgent patching, global banks first need to know what software they have
Senior risk executives at global banks are urging better management of IT asset inventories, to prevent cyber criminals exploiting known vulnerabilities in outdated software.
“You can’t patch what you don’t know,” says an operational risk manager at a global bank, adding that regulators are increasingly pressing banks to maintain a more centralised database of their technology. Those that have not done so “should expedite the process”.
The head of cyber risk management at a second global bank
Only users who have a paid subscription or are part of a corporate subscription are able to print or copy content.
To access these options, along with all other subscription benefits, please contact info@risk.net or view our subscription options here: http://subscriptions.risk.net/subscribe
You are currently unable to print this content. Please contact info@risk.net to find out more.
You are currently unable to copy this content. Please contact info@risk.net to find out more.
Copyright Infopro Digital Limited. All rights reserved.
As outlined in our terms and conditions, https://www.infopro-digital.com/terms-and-conditions/subscriptions/ (point 2.4), printing is limited to a single copy.
If you would like to purchase additional rights please email info@risk.net
Copyright Infopro Digital Limited. All rights reserved.
You may share this content using our article tools. As outlined in our terms and conditions, https://www.infopro-digital.com/terms-and-conditions/subscriptions/ (clause 2.4), an Authorised User may only make one copy of the materials for their own personal use. You must also comply with the restrictions in clause 2.5.
If you would like to purchase additional rights please email info@risk.net
More on Risk management
Banks urged to boost third-party scrutiny amid AML crackdown
Three US regulators highlight deficiencies in banks’ due diligence on fintech partners
Clearing members welcome JSCC initial margin reforms
Stress loss add-ons touted as path to ensure defaulter pays and default fund contributions shrink
Backtesting correlated quantities
A technique to decorrelate samples and reach higher discriminatory power is presented
Could Trump presidency herald $27bn margin call on World Bank?
Think-tank’s policy plan to pull US out of multilateral threatens AAA rating, ending collateral exemption
Op risk data: Shady loans robbing Reliance of $1.1bn
Also: H20’s less-than-liquid holdings, Ripple ripped for $125m, and more WhatsApp slaps expected. Data by ORX News
Banks must close the loop on counterparty credit risk
Following a series of market and industry credit risk events, regulatory scrutiny of counterparty credit risk management practices is increasing. Now, more than ever, banks must ensure they are optimising their approaches to credit risk mitigation
Should banks risk lightning hitting twice for CrowdStrike?
Bank tech teams divided on whether to give security vendor a second chance after update crash
Risk management overhauls juggle speed and independence
Some banks say the 1.5 line of defence responds faster to risk, but supervisors are still divided