2021 Vol 105 No 5

32 SEPTEMBER / OCTOBER 2021 PRODUCTS & SERVICES PROFILE Cybersecurity Peace of Mind Rod Lasley Executive Vice President - Operations & Member Services Indiana Bankers Association rlasley@indiana.bank @rodlasley infotex is a Preferred Service Provider of the Indiana Bankers Association and an IBA Diamond Associate Member. infotex, a longtime Preferred Service Provider of the Indiana Bankers Association and an IBA Diamond Associate Member, has been purposely breaking grammar rules since 2000. You may have noticed: infotex never capitalizes its name, but it always capitalizes “Client.” The four new employees that infotex hired during the pandemic appreciate this culture that prioritizes Clients over grammar. The company’s founder, Dan Hadaway, attributes the success and longevity of infotex to this attitude about its Clients. “Of course, there’s the ever-growing importance on cybersecurity,” says Dan, “and the role that the IBA has played will always be cherished. The IBA has introduced us to banks throughout the state, helped us give back to the community, and gave us a networking opportunity that we’ve been honored to participate in.” Dan regularly teaches many of the IBA’s ITrelated courses, as well as moderates the IBA’s annual Cybersecurity Conference. But as well-known as Dan and infotex are for their audit and cyber-consulting services, they also keep a close watch on bank networks. The infotex network-watching service, called a SIEM (security information and event management), helps banks prevent and respond to cybersecurity threats. Designed to detect and respond to anomalies in real time, the infotex SIEM allows complete visibility into potential issues on a 24x7x365 basis. Pulling alerts from different security tools into one database, the SIEM is the “place” that incident response teams visit during a cybersecurity incident. It not only thwarts most known threats, but because humans are watching the SIEM around the clock, it also responds to the behavior of a threat, and therefore mitigates most unknown threats. The infotex SIEM was designed by IT auditors specifically for community banks. For example, the SIEM addresses common examination findings regarding “watching the watchers.” Small banks without enough personnel to fully segregate duties can take advantage of the segregation benefits of the SIEM. If your regulator has asked about “the keys to the kingdom,” the infotex SIEM could be a great answer. Another example: infotex pushes actionable items to its Clients; you do not have to be a security expert to benefit from the SIEM. Because it watches bank networks, infotex has been in the Technology Service Provider Examination Program of the Federal Financial Institutions Examination Council since 2009. The examination process relies heavily on annual audits, ongoing penetration testing against the infotex systems, and constant consistent social engineering testing. The FFIEC helps infotex stay ahead of its Clients. But infotex doesn’t only watch networks. If you are an infotex Client, you gain access to hundreds of free templates and checklists. And infotex offers many testing services, including business continuity and incident response tabletop testing, information technology audits, external penetration testing/internal

RkJQdWJsaXNoZXIy MTg3NDExNQ==