- 1/17/2019 – 1/20/2019
- Dana Point, CA
- Speaking Attending
CLA's Randy Romes joined credit union supervisory committee members, internal audtiors, CEOs, directors, senior management, and other credit union leaders from around the country to discuss the risks and liabilities credit unions face on a daily basis. Randy was honored to present on the risks lurking in the cyber world.
Cybersecurity From the Dark Side –
10 Ways to Lose Everything
How to Identify & Manage Risky Cybersecurity Exceptions
Randy Romes, Principal, CliftonLarsonAllen, LLP
Organized crime has figured out how to make money through computer hacking & cyber fraud. They are developing and applying “business models” to improve and enhance their techniques and profitability, which have resulted in significant compromises of back end payment systems such as SWIFT, ACH, & credit card processing.
This session discussed common situations and exceptions (both known & unknown) that often lead to intrusions and breaches. Randy explored case studies from publicly acknowledged breaches and penetration testing assessments, described lessons learned from each event, and highlighted key control strategies, and specific critical controls that need to be in place to prevent and/or mitigate these types of breaches.
- Describe key weaknesses in system security that allow major breaches to occur
- Formulate strategies to prevent or mitigate the risks posed by breaches
- Identify critical components of a cybersecurity plan designed to identify cybersecurity risks and exceptions that lead to intrusions and breaches
Case studies include Member and Corporate Account Take Overs (CATO’s), payment system compromises (SWIFT and ACH), examples of social engineering and spear Phishing, and other common breach scenarios
- Presentation: Cybersecurity form the Dark Side: How to Lose Everything