« previous article | next article in Business »

ABN Amro adopt simple security approach to M&A

Bank determined not to let three-way split affect IT risk

By Leo King | Published: 10:04 GMT, 03 April 09

Related Content

News

Features

Opinion and Debate

ABN Amro is keeping its security function “simple and efficient” as acquirers the Royal Bank of Scotland, Santander and Fortis take over.

The bank, which was bought by the consortium, led by RBS, for £48 billion in 2007, has been working on a mammoth IT integration project to bring together the systems of the different companies.

Tom Roelofs, manager of incident response and prevention at ABN Amro, said the IT consequences of the takeover – the largest in European banking history – were “enormous”, leading to changes in technology, outsourcing, budgets, and IT and project managers.

Speaking to CIO UK sister title Computerworld UK, he said IT integration work was progressing as the acquirers increased their direction over ABN Amro.

With the growing security risks on the web, and the heightened danger of disgruntled employees as job cuts were announced, ABN Amro knew it had to work hard to maintain high levels of security, he said.

“The combination of splitting the bank and transition to new owners at the same time, with a recession going on, is very difficult,” said Roelofs, speaking at the Forrester EMEA Security Forum in London. “We had to think about how we would cope.”

Registration is free, and gives you full access to our extensive white paper library, case studies & analysis, downloads & speciality areas, and more.

ABN Amro took assertive steps to structure its security processes and keep things as straightforward as possible, he said. Internal staff lead security, and outsourcers represent under 20 percent of security staff.

“We went further down the track of really structuring information security services, into divisions such as incident response, risk assessment and policy management,” he explained. ABN Amro then made clear to the business all the services provided by each division.

Keeping staff on board and aware of security processes was “very critical”, Roelofs said. “We have a lot of staff meetings telling them what we are doing, every two or three weeks.

“You can’t afford to lose staff confidence in security. Once you’ve lost it, you can’t get it back.”

Email Updates

CIO Newsletters: Expert insight, advice and tools for technology, business, leadership and the CIO career.

Email this article to a friend or colleague:

PLEASE NOTE: Your name is used only to let the recipient know who sent the story, and in case of transmission error. Both your name and the recipient's name and address will not be used for any other purpose.

CIO White Papers

Legal risks of uncontrolled email and web use

Exploring the challenges facing IT Mangers today and vital steps to ensure safe internet an email use by employees.

The challenge of strategic alignment

Recent research also shows that many organisations give too much prominence to internally generated KPIs – controlling the controllable – rather than looking outwards at threats and opportunities on the horizon which can ultimately be far more influential on performance.

Six essential steps to successful IT centralisation

This report, based on the real experience of a recent centralisation project, is aimed at those involved in IT strategy within their organisation. It provides some practical insights for CIOs, CTOs, Heads of IT, IT Directors and those involved more closely with the service management function.

Managing email: Exploring common email management challenges (and how to overcome them)

We surveyed 157 IT professionals to understand the difficulties and opportunities faced by email managers. From this we were able to highlight some easy-to-manange solutions to their most pressing problems.

CIO UK - Business - Technology - Leadership

Differentiate your company with complete CRM

Focused on productivity and empowerment and leveraging the natural rhythms people work
What defines Complete CRM? How businesses can better engage customers and users, manage customer transactions, and analyse results to adapt and take advantage of changing business and economic circumstances.

DOWNLOAD

Oracle White Paper

IT Misuse Survey

Complete this survey and you could win a Nexus One.

CIO are running a short survey to discover how UK businesses are managing internet and email misuse in the Enterprise.

COMPLETE SURVEY

Virtualisation - The 'black hole' of security?

Covering the set of issues, ideas and perceptions discussed during a recently held debate about the effect of virtualisation techniques on organisational security. This paper provides a comprehensive account of all the subject matters debated and concludes with key takeaways and IDC recommended actions.

DOWNLOAD

Trend Micro

* *