SUCCESS STORIES
International Integration Program of Cyber Security & BCM models
Govern the Banking Group Cybersecurity Posture and Risks at worldwide level
THE CHALLENGE
What are the most effective organization and processes to address Cyber Security Risks?
OUR SOLUTIONS
- Governance and monitoring of a multiyear international program of Cyber Security and BCM initiatives at Group Level (domain areas: Security Governance, Security Strategy, Technological solutions, Controls, BCM) aimed at integration of LEs into Parent Company Cyber Security and BCM Framework and centralizing Cyber Security Budget Management
- Review and update of the Cyber Security Posture methodology aimed at periodical monitoring, by defining the Cyber Security Maturity calculation model based on different CS and BCM metrics for Group companies through the aggregation and consolidation of the maturity values of all Legal Entities, also based on specific economic parameters with KPI / KRI dashboards
- Support to setup and design of a Cyber Security Department for foreign Entities
- Support to adoption of of Cyber Security and BCM controls model and to execute functional analysis for their automation through specific GRC platform (i.e. Service Now)
- Execution of IT Security Verification (paper and technical audit-like analysis) to assure effective IT Security by Design requirements and controls adoption by LEs that leads to reduce the risks of critical events and incidents (examples of targeted topics / initiatives: GDPR, PSD2, Open Digital Banking)
- Support for Third Parties Security evaluations
KEY ACHIEVEMENTS
20
Legal Entities to be monitored and integrated
700
Actions clustered in different CS and BCM streams to be monitored
+3
Cybersecurity Frameworks considered (i.e. NIST-CSF, ISO 27001, ISO22301)