The purpose of the Digital Security Council shall be to provide holistic governance over the Information Security and Risk Management strategy and scope for First Niagara Financial Group. The core objectives of the Digital Security Council are:

• Development and enforcement of consistent and complete information security standards, guidelines, procedures, and baselines
  
• IT security product review and selection
  
• Recommend, review, and approve IT Security architecture and infrastructure
  
• Review of, and timely response to, the results of security testing (vulnerabilities) and vendor security bulletins (patches)
  
• Serve as supporters of the First Niagara Financial Group Information Security Program, providing credibility and visibility
  
• Recommend and sponsor information security awareness, communication, and education programs to develop an information security conscious and risk awareness culture throughout First Niagara Financial Group