Conducting Your Annual Security Review

One-Day Workshop

Presentation Abstract

Every financial institution should conduct a comprehensive security review at least annually -- and more frequently if the institution's environment changes rapidly. Examples of these environmental conditions include:

l        The introduction of a new product or service

l        A change in security regulations or laws

l        The institution's entry into a previously-inexperienced market

l        A change in leadership or other key personnel

l        The acquisition of a previously-owned banking facility

l        The construction of a new banking facility

The purpose of the security review is to identify conditions that may result in a loss or a legal action tomorrow -- or thirty years from now. In other words, this review simply targets an institution's "loss potential" -- using a standardized, practical and cost-effective methodology for analyzing the condition and contributions of the security function -- and for identifying the institution-wide "windows of opportunity" for loss from all sources. This live, comprehensive program focuses on the ever-changing issues involving the development, maintenance and updating of each bank's required, evolutionary Security Program Your review and subsequent report should involve security and related issues as they affect the five (5) most common, industry-standard security priorities and areas of exposure, including:

l        Employees and other institution-affiliated parties -- and their families

l        Customers and other persons lawfully present on the premises, including vendors

l        Facilities that you own, manage, maintain, rent or control

l        Assets that are tangible and intangible -- particularly the institution's image

l        Records from internal and external sources -- both paper and electronic

This presentation suggests a basic methodology and appropriate techniques for conducting an initial and continuing an institution-wide security review. Using a simple, industry-standard evaluation process, this presentation also addresses the use of consultants, department managers and other personnel to gather the necessary information for the Security Officer or Auditor to use in making recommendations regarding policies, procedures and processes. How you conduct your security review depends upon your training, education, experience, background and your attitude -- but mostly it depends on your Board's viewpoint about the security function, in general -- and about pro-active solutions, in particular. In other words: how far should you go? You'll be able to make better decisions -- and recommendations -- about what your security review should encompass after this presentation. This interactive presentation suggests a basic methodology and appropriate techniques for conducting an initial and continuing an institution-wide security review. Using a simple, industry-standard evaluation process, this presentation also addresses the use of consultants, department managers and other personnel to gather the necessary information for the Security Officer or Auditor to use in making recommendations regarding policies, procedures and processes.

How you conduct your security review depends upon your training, education, experience, background and your attitude -- but mostly it depends on your Board's viewpoint about the security function, in general -- and about pro-active solutions, in particular. In other words: how far should you go? You'll be able to make better decisions -- and recommendations -- about what your security review should encompass after this presentation.

Presentation Topics

l        Introduction

l        The Security Review Process

l        Assessing & Establishing The Priorities

l        Determining The Focus

l        Locating Or Developing The Tools

l        Creating & Submitting The Report

l        Summary

Presentation Objectives

This presentation is designed to help you:

l        Identify and describe the institution's primary sources of loss exposure and the methods that the Security Officer may use to effectively reduce that exposure

l        Assess the impact of these sources upon the institution and its Security Program and overall strategic plan

l        Design or recommend appropriate changes to the institution's policies and procedures to address the issues discovered

l        Prepare a comprehensive report of findings for the Board of Directors

l        Train or recommend training for the Board of Directors and senior management personnel about their responsibilities and the projected impact of identified loss exposures

Presentation Audience

l        Security Officers

l        Security Committee members

l        Board of Directors

l        Auditors

l        Human Resources Managers

l        Facility Managers

l        Training Managers

l        Compliance Officers

Presentation Tools

l        Workbook text

Last updated on January 7, 2009