Information Security Program

CoNetrix offers a comprehensive security solution to help your organization develop, implement and maintain an Information Security Program. In addition, CoNetrix can customize a security solution to fit your specific needs. A CoNetrix Information Security Program includes:

Risk Assessment

The foundation of an Information Security Program is a Risk Assessment. CoNetrix will produce and help you maintain an annual "reasonably foreseeable" information security risk assessment as defined in and required by regulatory guidance.

Information Security Policies and Supporting Documentation

Security Policies and Supporting Documentation establish the foundation for a customized security plan for your bank. CoNetrix will produce Information Security Policies and Supporting Documentation, which are comprehensive and easily expandable to incorporate organizational changes.

Business Continuity Planning (BCP)

CoNetrix will facilitate the development of the BCP to address adverse events such as natural disasters, technological failures, human error and terrorism. In addition, CoNetrix will assist with Orientation/Walk Through and Tabletop/Mini-drill tests, the first two levels of BCP testing according to the FFIEC.

Security Awareness Training

CoNetrix will provide the bank with online training courses to comply with the annual requirement to conduct security awareness training.

Vendor Management

CoNetrix will assist with the bank’s Vendor Management Program.

Incident Response

CoNetrix will assist with the creation of an Incident Response Plan and with security incidents.

Supporting Security Services

CoNetrix will provide the bank with additional security services including:

Quarterly independent external perimeter network scans and results analysis
Attendance of Security Committee Meetings (semiannually)
Access Control List report generator tool
Calendar and reminders of policy commitments
Identity Theft Prevention Program online tool with associated training