by Zach Duke | Jul 24, 2025 | Information Security, Community Banking, Cybersecurity, Cybersecurity Assessment Toolkit, FFIEC
With the FFIEC Cybersecurity Assessment Tool (CAT) being sunset, financial institutions are evaluating their next move. Finosec’s modernized Cyber Assessment Tool offers a streamlined alternative that builds on the foundation of your existing work, without starting...
by Zach Duke | Jun 12, 2025 | Governance, AI, AI Governance, AI Tools, Community Banking, Cybersecurity, Information Security, Information Security Governance, IT, IT Security, Security
Spreadsheets have long been the go-to tool for tracking and managing information security tasks. They’re familiar, flexible, and easy to share. But in today’s rapidly evolving landscape, where efficiency; compliance; and innovation are key, relying on...
by Zach Duke | Jan 24, 2025 | Information Security, Community Banking, Cybersecurity, IT, IT Security, Risk Management
In the world of cybersecurity and third-party risk management, spreadsheets have become a popular tool. Institutions often use them for tasks such as tracking exceptions from audits, managing access rights, and conducting risk assessments. Despite their frequency of...
by Zach Duke | Jan 9, 2025 | Access Mangement, Community Banking, Information Security, IT
Securing your information security budget is challenging—especially in tight economic times. While the strategies for approval are crucial, it’s equally important to have a plan for when not everything makes it through the budget process. This is where documenting...
by Zach Duke | Dec 17, 2024 | Access Mangement, Community Banking, Cybersecurity, FDICIA, FFIEC, Information Security, IT, User Access
For financial institutions subject to FDICIA, the Federal Deposit Insurance Corporation Improvement Act, the annual management attestation is a critical declaration of compliance. It signifies that the institution’s internal controls over financial reporting (ICFR)...
by Zach Duke | Nov 25, 2024 | Access Mangement, FFIEC, Information Security, IT, IT Security, Regulatory, User Access
Access management is a critical component of cybersecurity and compliance, especially for financial institutions where security expectations are paramount. The challenges surrounding permissions management, particularly during user access reviews, are increasing due...