by Zach Duke | Feb 21, 2025 | Cybersecurity, Community Banking, Cybersecurity Assessment Toolkit, IT, IT Security, Regulatory, Risk, Risk Assessment, Risk Management
The Risks of Spreadsheets in Cybersecurity and Why It’s Time to Move On As regulators phase out legacy tools like the Cybersecurity Assessment Toolkit (CAT), it’s the perfect opportunity for institutions to rethink their approaches to governance and risk management....
by Zach Duke | Feb 13, 2025 | Cybersecurity, Banking, Community Banking, Information Security Officer, Regulatory, Risk Assessment
In an industry where cybersecurity threats continue to evolve, community banks must ensure that governance and oversight processes are airtight. Yet, many still rely on spreadsheets to manage critical security tasks, compliance tracking, and risk assessments. While...
by Beth Sumner | Feb 8, 2024 | User Access, Governance, MFA, Multi-Factor Authentication, Risk Assessment
In the rapidly evolving landscape of banking technology and cybersecurity, understanding and implementing effective Identity and Access Management (IAM) strategies is more crucial than ever. Yet, we understand that delving into the complexities of IAM can be daunting....
by Zach Duke | Sep 14, 2023 | Cybersecurity, Information Security, Infosec, page-user-access, Reporting, Risk, Risk Assessment, User Access
The Federal Financial Institutions Examination Council (FFIEC) updated its Authentication Guidance in August 2021, which aims to standardize and enhance security measures for financial institutions. We are seeing a focus on these areas during exams and audits, and...
by Beth Sumner | Jul 27, 2023 | Cybersecurity, Information Security, Infosec, page-user-access, Reporting, Risk, Risk Assessment, Training, User Access
Today, we’re delving into an essential topic that affects both the security and the integrity of your digital assets: privilege creep. In this blog, we’ll explore the potential risks, and provide you with actionable strategies to prevent this sneaky threat from...
by Finosec | May 11, 2023 | Information Security, Infosec, Reporting, Risk Assessment, User Access
User Access Reviews (UAR) are crucial for financial institutions, examiners and auditors are focusing on them, and best practices mandate managing to least privilege. However, the process can be complicated and time-consuming. This is why it’s important to...
