by Zach Duke | Jun 26, 2025 | Cybersecurity Assessment Toolkit, Community Banking, Cybersecurity, FFIEC, Uncategorized
One of the most overlooked challenges in cybersecurity governance isn’t the technology itself, it’s the communication. For many institutions, the gap between information security teams and executive leadership can lead to misunderstandings, misalignment, and missed...
by Zach Duke | Jun 12, 2025 | Governance, AI, AI Governance, AI Tools, Community Banking, Cybersecurity, Information Security, Information Security Governance, IT, IT Security, Security
Spreadsheets have long been the go-to tool for tracking and managing information security tasks. They’re familiar, flexible, and easy to share. But in today’s rapidly evolving landscape, where efficiency; compliance; and innovation are key, relying on...
by Zach Duke | May 29, 2025 | PII Assessment, Banking, Community Banking, Cybersecurity, Governance, IT, Risk Assessment, User Access
Managing third-party risk, performing access reviews, and completing risk assessments are foundational elements of a sound information security program, especially in the banking industry. But these processes often rely on fragmented, outdated tools like spreadsheets....
by Zach Duke | May 15, 2025 | Cybersecurity Assessment Toolkit, Community Banking, Cybersecurity, IT, Toolkit, Uncategorized
It’s been a decade since the Cybersecurity Assessment Toolkit (CAT) was first introduced. For many institutions, especially community banks, it has become a familiar part of their cybersecurity routine. But with the recent decision by regulators to sunset the toolkit...
by Zach Duke | May 1, 2025 | Automation, Access Mangement, Community Banking, Employee, IT, IT Security, User Access
In today’s fast-paced digital workplace, managing employee access to systems is more important and more complicated than ever before. Yet, many organizations still rely on outdated tools like spreadsheets to track who has access each system. While this might...
by Zach Duke | Apr 17, 2025 | Cybersecurity Assessment Toolkit, Community Banking, Cybersecurity, IT, Toolkit
With the upcoming sunset of the Cybersecurity Assessment Toolkit (CAT) slated for August, many financial institutions are left wondering: What now? For over a decade, CAT has been the backbone of cybersecurity risk assessments in the banking industry. As we move...