ATM Security Service comprises of the following areas:

1. ATM Security Assessment,
2. Gaps Analysis and Recommendations, and
3. Continuous Improvement Services.

ATM Secuirty Risks

1. ATMs are located outside of the banks premises, may be in malls, airports, etc.
2. ATMs contain cash that can range from few hundred thousand to millions of Rupees.
3. ATMs are connected to the enterprise network of the bank and act as an entry point to the bank\'s larger network.
4. ATMs security breaches include physical attacks, data theft through skimming devices, cyber attacks, and internal fraud.

Our Approach 

1. Identify the highest risk use cases leveraging zero trust methodology.
2. Protect high-risk assets.
3. Detect, Respond, and Recover.

Our Methodology

1. ATM Channel Assessment
   1. Facility Security Assessment.
   2. Terminal Security Assessment.
   3. Information System Assessment.
   4. Enterprise Management Assessment.
   5. Governance Risk and Compliance
2. Analytics and Reports:
   1. Gap Analysis
   2. Vulnerability Reporting
   3. Recommendations  to protect
   4. Tools for continuous Monitoring
3. Continuous Improvement Services
   1. Managed Services
   2. Recurring Audit Services

Activities 

Step 1: Prioritize and Scope – Identify business/mission objectives and high-level priorities of your organization. Determine the scope of systems, components and assets that support the ATM systems

Step 2: Orient - Identify related systems and assets, threats and vulnerabilities, regulatory requirements, and overall risk approach for the ATM components.

Step 3: Create a Current Profile - Develop a Current Profile of Bank and the ATM system by quantifying policy and practice maturity on a scale from 1-5.

Step 4: Conduct a Risk Assessment - Identify emerging risks and use cyber threat information from internal and external sources to document the likelihood and impact of cybersecurity events.

Step 5: Create a Target Profile - Create a Target Profile that describe Bank’s desired cybersecurity outcomes. 

Step 6: Determine, Analyze, and Prioritize Gaps - Compare the Current Profile and the Target Profile to determine gaps.

Step 7: Create Gaps & Remediation Plan - Determine which actions to take to address the gaps identified in the previous step and adjust Bank’s current cybersecurity practices.