by Zach Duke | Apr 22, 2026 | Finosec CAT, Community Banking, Cybersecurity, Cybersecurity Assessment Toolkit, FFIEC, Reporting
When the FFIEC CAT was sunset, it did more than create a gap in tooling; it created a gap in communication. The true value of the CAT was not just in the questions it asked, but in the structured way it enabled institutions to clearly communicate cybersecurity risk to...
by Zach Duke | Mar 26, 2026 | Finosec Platform, Community Banking, Cybersecurity, Data Access, Data Access Governance, Governance, Information Security, Information Security Governance, User Access, User Access Reporting, Vendor Management
How Finosec Keeps Your Data Working Harder So You Don’t Have To At Finosec, we believe cybersecurity governance should be simple, and that starts with not asking you to enter the same information more than once. Whether you’re reviewing access, managing vendors,...
by Finosec | Jan 27, 2026 | Press Release, Access Mangement, Banking Technology, Community Banking, Compliance, Compliance Risks, Cybersecurity Assessment Toolkit, Finosec CAT, Governance, Information Security Governance, Risk Management
Finosec, a cybersecurity governance Saas company, announced a year of rapid product innovation in 2025, delivering over one hundred enhancements across its platform to help community banks and credit unions respond to increasing regulatory pressure, operational...
by Zach Duke | Nov 25, 2025 | Finosec CAT, Community Banking, Cybersecurity, Cybersecurity Assessment Toolkit, FFIEC
Why Inherent Risk Still Matters Even if You’ve Already Chosen Your Framework Many community banks have already selected a cybersecurity framework to replace the FFIEC Cybersecurity Assessment Tool (CAT). NIST CSF 2.0 is one of the most popular choices, and for good...
by Zach Duke | Nov 20, 2025 | Finosec CAT, Community Banking, Cybersecurity, Cybersecurity Assessment Toolkit, FFIEC, Financial Institutions, Risk Assessment
After the August 31st sunset of the FFIEC CAT, community banks have either started to transition away or are confirming their plan and evaluating frameworks such as the Cyber Risk Institute (CRI) Profile, NIST Cybersecurity Framework (CSF 2.0), or CIS Controls. Each...
by Zach Duke | Oct 23, 2025 | Vendor Management, Community Banking, Cybersecurity, Information Security, IT, IT Security
In today’s banking landscape, risk doesn’t just come from inside the building. Third-party vendors are now central to how financial institutions operate. They provide everything from core processing to cybersecurity tools. But with that reliance comes responsibility....
