Upload File

rsa conference europe 2013 - bankia reaching high maturit levels with o-ism3: a success case

  • Home
  • Technology
  • RSA CONFERENCE EUROPE 2013 - Bankia reaching high maturit levels with O-ISM3: A Success Case
12
Session ID: Session Classification: Vicente Aceituno @vaceituno Inovement Spain GRC-T08B Intermediate Case Study: Bankia Reaching the Highest Maturity Levels

Upload: vicente-aceituno

Post on 22-Nov-2014

3.825 views

Category:

Technology


1 download

Report

DESCRIPTION

 

TRANSCRIPT

Page 1: RSA CONFERENCE EUROPE 2013 - Bankia reaching high maturit levels with O-ISM3: A Success Case

Session ID:

Session Classification:

Vicente Aceituno @vaceitunoInovement Spain

GRC-T08B

Intermediate

Case Study: Bankia Reaching the Highest Maturity Levels

Page 2: RSA CONFERENCE EUROPE 2013 - Bankia reaching high maturit levels with O-ISM3: A Success Case

Presenter Logo#RSAC

Maturity

A measure of the ability to improve often over time

Page 3: RSA CONFERENCE EUROPE 2013 - Bankia reaching high maturit levels with O-ISM3: A Success Case

Presenter Logo#RSAC

Bankia► 4th Biggest bank in Spain with 12 million

customers► Took the decision to implement O-ISM3 for

application security testing in late 2008► The Application Security team achieved an

Optimized maturity level in 6 months

Page 4: RSA CONFERENCE EUROPE 2013 - Bankia reaching high maturit levels with O-ISM3: A Success Case

Presenter Logo#RSAC

Return Of Investment and MaturityROI

Maturity

PenetrationTesting

White BoxP.T.

LifecycleIntegration

SecureDesign

ContinuousImprovement

Page 5: RSA CONFERENCE EUROPE 2013 - Bankia reaching high maturit levels with O-ISM3: A Success Case

Presenter Logo#RSAC

Improvement

►Achieving higher value with the same resources

►Achieving the same value with fewer resources

Page 6: RSA CONFERENCE EUROPE 2013 - Bankia reaching high maturit levels with O-ISM3: A Success Case

Presenter Logo#RSAC

Improvement

► Producing Better Results

► Contribute to Business Needs

► Tuning Priorities

► Better Use of Resources

Resources

Value

Page 7: RSA CONFERENCE EUROPE 2013 - Bankia reaching high maturit levels with O-ISM3: A Success Case

Presenter Logo#RSAC

Continuous Improvement ToolBoxMetrics Security

Objectives Analysis

Processes

Knowledge Managemen

t

Page 8: RSA CONFERENCE EUROPE 2013 - Bankia reaching high maturit levels with O-ISM3: A Success Case

Presenter Logo#RSAC

Continuous Improvement Benefits

► Effortless definition of SLA’s.

► Feedback.

► Application Classification according to Business Criteria.

► Better Communication.

► Efficient allocation of resources.

► Better distribution of responsibilities.

► Uniform results regardless of who performs a task.

► No vendor lock-in.

Page 9: RSA CONFERENCE EUROPE 2013 - Bankia reaching high maturit levels with O-ISM3: A Success Case

Presenter Logo#RSAC

Higher Maturity Results

0

50

100

150

200

250

2008 2009 2010 2011 2012

WeaknessesFixed

Euros / WeaknessFixed

Weaknesses /ApplicationSecurity Test

Note: Qualitative changes in comparison with 2008 are represented

Page 10: RSA CONFERENCE EUROPE 2013 - Bankia reaching high maturit levels with O-ISM3: A Success Case

Presenter Logo#RSAC

Higher Maturity Results

0

50

100

150

200

250

300

350

400

2008 2009 2010 2011 2012

Application SecurityTestsEuros / ApplicationSecurity TestApplication SecurityTest Workload

Note: Qualitative changes in comparison with 2008 are represented

Page 11: RSA CONFERENCE EUROPE 2013 - Bankia reaching high maturit levels with O-ISM3: A Success Case

Presenter Logo#RSAC

Last Messages

► Maturity is a measure of the ability for continuous improvement.

► Achieving high levels of maturity can be hard if you don’t know how.

► High maturity is about working smart, not hard.

► Bankia saved time and money, improved the security of their applications, the communication between teams, and avoided vendor lock-in.

Page 12: RSA CONFERENCE EUROPE 2013 - Bankia reaching high maturit levels with O-ISM3: A Success Case

Thank you!

#RSAC

Vicente Aceituno

Inovement Spain

@vaceituno

[email protected]

www.inovement.es


Analisis de Riesgos con O-ISM3 RA

La crisis de bankia exposicion

Bankia - Planes de pensiones

O-ISM3 vs ISO27001

FOLLETO INFORMATIVO - Bankia

Proyecto de fusión CaixaBank-Bankia€¦ · Proyecto de fusión CaixaBank-Bankia 18 de Septiembre 2020 CaixaBank + Bankia. 2 Importante La información contenida en esta presentación

O-ISM3 Challenge Results Study

Introducing O-ISM3

Case Studies Eurobits–Bankia Collaboration Eurobits–Bankia ......3. Eurobits eFactura system. More than 70% of all the invoices Bankia receives are electronic invoices. Through

Informe BFA-Bankia Año 0

Informe de auditoría independiente Bankia Pensiones LVII ... · Title: Informe de auditoría independiente Bankia Pensiones LVII, Fondo de Pensiones. Author: Bankia, S.A. Created

ISM3 v2.00 HandBook

Plan reestructuración bankia

Fraude empresarial: Caso Bankia

O-ISM3 Risk Assessment

Encuentro Financiero Internacional Bankia 2012

Consejo de Administración - Bankia · INFORME ANUAL SOBRE REMUNERACIONES DE LOS CONSEJEROS DE BANKIA, S.A. El presente informe sobre remuneraciones de los consejeros de Bankia, S.A.,

BFA-Bankia earns 648 million to September file3 @Bankia @PressBankia Bankia made provisions of 1,151 million euros between January and September, improving its loan portfolio coverage

Bankia Com PDF Retribuciones

Acuerdo bankia sindicatos 2015

ISM3 - Information Security Management Maturity Model

Casos de éxito Colaboración de Eurobits y Bankia...2015/04/29  · Casos de éxito Colaboración de Eurobits y Bankia Colaboración de Eurobits y Bankia En 2016, Bankia pagó a sus

BANKIA S.A./ GRUPO BFA -BANKIA (BANKIA) › gallery › 6 › Bankia_Informe_2013.pdf · 3. Contexto general Desde que Bankia S.A. comenzó a operar como banco y sociedad cotizada

Resultados bankia primer trimestre 2013

O-ISM3 Executive Summary

O-IsM3 Open Information Security Managment Maturity Model C102

Auto de Bankia

M/242/2015/I BANKIA 28079149912017100013fsima.es/wp-content/uploads/M_242_2015_I-BANKIA...M/242/2015/I BANKIA 28079149912017100013 ... Keywords ()

REFORMULACION CUENTAS BANKIA 2012

Examen de maturit´e gymnasiale Juin 2021 `a ’ l Ecole de

Presentación de resultados 1T 2020 - Bankia · 2020-04-29 · PRESENTACION TRIMESTRAL DE RESULTADOS. 2 Advertencia legal Este documento ha sido elaborado por Bankia, S.A. (“Bankia”)

BANKIA BANKIA

resultados bankia 1º trimestre 2013

Maturit iltemastoricotipologia c

Presentación de PowerPoint - Bankia€¦ · Presentación trimestral de resultados 2T 2017 26 Julio 2017. 2 Advertencia legal Este documento ha sido elaborado por Bankia, S.A. (“Bankia”)