Information Security Policies Management Software

Policies and procedures are the primary method financial institutions (banks, savings associations, credit unions, and trust companies) use to define controls. Too often, after they are developed, they end up sitting on a desk and collecting dust until the next exam.

Meeting Agendas

Document how, when and who will verify each policy. Then let Tandem generate meeting agendas for each team.

These meeting agendas will always accurately reflect your policies and help ensure items don't fall through the cracks.

Multi-User Access

Control who has access to your policies and monitor the changes they make.

Use category specific access roles to ensure users can customize their own policy categories without being able to change other policies.

Acceptable Use Policy Training

Enroll employees in an online technology AUP training course, generated from your policy language.

The online training options allow digital tracking of employees' acceptance of the institution's Acceptable Use Policy.

Downloads

Effortlessly generate consistent and professional documents on the fly to share with your executive team, board of directors, auditors, and examiners.

These customizable documents are available in Microsoft Word and Adobe PDF formats.

CoNetrix offers an online solution to help you create and maintain your enterprise-wide policies in Tandem.

The Tandem Policies product is populated with an Information Security Policies set, created by CoNetrix security experts and tailored for your institution through a multiple-choice questionnaire.

The Information Security Policies set includes:

• Content for more than 50 recommended policies, designed to be in compliance with information security and cybersecurity regulations. Template policies include: Change Management, Core Application, Electronic Banking (e-Banking), Incident Response, Intrusion Detection and Prevention, Mobile Devices, Social Media, and Wireless Network Access.
• The ability to define verification items for each policy and combine the items into meeting agendas for your various committees (e.g., Audit Committee, Security Committee, etc.).
• A mapping to appropriate regulatory guidance (i.e., FFIEC, FDIC, OCC, FRB, and NCUA). Additionally, Tandem allows you to optionally include references to the following standards:
  • COBIT 4.1
  • NIST SP800-53
  • PCI DSS vs. 3.1

In addition to the Information Security Policies set, you may use the Tandem framework to maintain all of your financial institution's policies. Add your own policy language and assign user access based upon unique categories (e.g., Human Resources, Lending, Operations, etc.). Use global reporting to generate standardized documents, such as an enterprise-wide Acceptable Use Policy (AUP) or your full policy set, ready to share with your employees, auditors, examiners, and Board of Directors.

Features

The CoNetrix Policies software is feature-rich, including:

• An Access Control List (ACL) report generator tool
• Suggested Information Security Policies created and updated by security and compliance experts
• Downloadable documents in Microsoft Word and/or Adobe PDF formats
• New features and updates are automatically included with your annual subscription
• Free training workshops to help familiarize you with the software
• Integration with other CoNetrix online software
• Anywhere/anytime Internet access through a secure, online portal
• Multi-factor authentication (optional)
• Single Sign On (SSO) integration using SAML 2.0
• Multi-user access
• No software installation or equipment costs
• The ability to manage several companies' Policies with one login (requires a subscription for each company)

For professional services, ask your account representative about adding Boost Consulting services.