Basic client controls
These are the minimum set of controls outside Online Banking Enterprise™ that FNB expects clients to implement to safeguard them against fraud and information breaches that could result in a loss to the client.
What it is
Your IT department should ensure the following:
- Effective antivirus software on all PCs within your environment, the antivirus must be kept up to date.
- Ensure that all PCs are kept up to date in terms of security patches and updates supplied by the relevant software vendors. It is best to configure all products to do automatic security updates where possible.
- Ensure an effective solution for preventing malicious emails from entering the client network. This should include the following:
- An effective solution for scanning emails entering the organisation for viruses and spyware on the email gateway.
- Deny all executables and other installation file types from coming into the organisation via email, even if they are hidden in a compressed file.
- Controlling or denying encrypted or password protected emails from entering the client network as this can be used to bypass the scanning controls
- Ensure that the company network is secured with a properly configured firewall.
- If applicable make sure your wireless network is properly secured.
- The IT team needs to appropriately restrict and monitor remote desktop access to PCs that have access to Online Banking Enterprise™.
- Memory sticks are unfortunately an effective way to spread viruses and spyware, users need to understand this and ensure that they do not become infected by inserting their memory sticks into unknown or high risk devices.