Home
Topics
Security management
Enterprise risk management strategies
GRC tools high on HDFC Bank’s infosec priorities for 2011

GRC tools high on HDFC Bank’s infosec priorities for 2011

Date: Dec 14, 2010

Automation of governance, risk and compliance has been identified by HDFC Bank as its top information security priority for 2011. While discussing his list of information security priorities, Vishal Salvi, the CISO of HDFC Bank informs that the bank is looking at acquiring a GRC tool for bringing automation into the processes of risk assessment, management and mitigation.

Apart from GRC tools, HDFC bank plans to further strengthen its identity and access management practice in 2011 with a special focus on user ID lifecycle management, achieve PCI-DSS certification for the bank’s infrastructure, as well as invest in solutions for data protection (such as digital rights management and encryption). Although Salvi is unable to provide exact figures, he expects security spending to be around 3% to 7% of HDFC Bank’s total IT budget.

Join Dhwani Pandya of SearchSecurity.in, as she interviews Vishal Salvi for an indepth view into HDFC Bank’s infosec priorities and challenges for 2011.

More on Enterprise risk management strategies

Security researcher calls for greater focus on supply chain assurance
VIDEO - Hart Rossman, vice president and CTO for cyber programs at SAIC says more needs to be done to secure hardware and software moving in the global supply chain. Rossman explains the threat posed by poorly manufactured, bogus parts and software. Unfortunately few technologies exist to oversee secure manufacturing and ensure electronic components and software are not knock-offs.
Forrester's advice for data governance maturity model success
VIDEO - Forrester Research Senior Analyst Andrew Jaquith gives advice for data governance maturity model success and why enterprises should do more than just follow a standardized set of guidelines to protect data.
Face-off: Information security awareness and when not to reveal information
VIDEO - Can the security industry learn from the Transportation Security Administration? It may seem like an odd pairing, but both struggle with the challenges of protecting those in their care while maintaining usability and personal privacy.
CEH certification gains credence in IT security domain
Feature - CEH certification is much sought after in the IT security domain today. Here’s how you can obtain CEH certification and why you should attempt do so.
Information security budgets: Five steps to obtain management buy-in
Tip - Getting management to approve security budgets is difficult. Here are guidelines to help you prepare and present information security budgets effectively.
PCI Council urges P2P encryption for mobile payments
News - A PCI Council guidance document requires merchants to use a validated PIN entry device or secure card reader to accept payments using mobile devices.
( May 16, 2012 )
Android security model doing best to enable mobile malware spread
News - At Information Security Decisions 2012, Dan Guido put the mobile malware focus on the Android security model and Google’s mobile app vetting process.
( May 16, 2012 )
POS terminal security: Best practices for point of sale environments
Tip - Securing point of sale (POS) environments can be tricky. Shobitha Hariharan and Nitin Bhatnagar share comprehensive POS terminal security best practices.

Latest Headlines

Topics

Hot Topics

Advice & Tutorials

Technology Dictionary

Tips

Answers

Ask a Question

Research Library

Product Demos

GRC tools high on HDFC Bank’s infosec priorities for 2011

GRC tools high on HDFC Bank’s infosec priorities for 2011

More on Enterprise risk management strategies

More from Related TechTarget Sites