These basic client controls are the minimum safety recommendations for Online Banking Enterprise™. These controls will help safeguard you against fraud and information breaches that could result in a loss.
Your IT department should take charge of the following
Ensure effective antivirus software on all PCs within your environment, the antivirus must be kept up to date.
Ensure that all PCs are kept up to date in terms of security patches and updates supplied by the relevant software vendors. It is best to configure all products to do automatic security updates where possible.
Ensure an effective solution for preventing malicious emails from entering the client network.
An effective solution for scanning emails entering the organisation for viruses and spyware on the email gateway.
Control or deny encrypted or password protected emails from entering the client network as this can be used to bypass the scanning controls.
Ensure that the company network is secured with a properly configured firewall.
If applicable make sure your wireless network is properly secured.
The IT team needs to appropriately restrict and monitor remote desktop access to PCs that have access to Online Banking Enterprise™.
Memory sticks are unfortunately an effective way to spread viruses and spyware, users need to understand this and ensure that they do not become infected by inserting their memory sticks into unknown or high risk devices.
Deny all executables and other installation file types from coming into the organisation via email, even if they are hidden in a compressed file.