by Zach Duke | Nov 20, 2025 | Finosec CAT, Community Banking, Cybersecurity, Cybersecurity Assessment Toolkit, FFIEC, Financial Institutions, Risk Assessment
After the August 31st sunset of the FFIEC CAT, community banks have either started to transition away or are confirming their plan and evaluating frameworks such as the Cyber Risk Institute (CRI) Profile, NIST Cybersecurity Framework (CSF 2.0), or CIS Controls. Each...
by Zach Duke | Jul 10, 2025 | Cybersecurity Assessment Toolkit, Community Banking, Cybersecurity, FFIEC, Risk Assessment, Toolkit, Uncategorized
With the official sunset of the FFIEC Cybersecurity Assessment Tool (CAT) approaching, banks across the country are asking the same question: “What comes next?” For many institutions, the CAT has long served as the cornerstone of their cybersecurity self-assessment...
by Zach Duke | May 29, 2025 | PII Assessment, Banking, Community Banking, Cybersecurity, Governance, IT, Risk Assessment, User Access
Managing third-party risk, performing access reviews, and completing risk assessments are foundational elements of a sound information security program, especially in the banking industry. But these processes often rely on fragmented, outdated tools like spreadsheets....
by Zach Duke | Feb 21, 2025 | Cybersecurity, Community Banking, Cybersecurity Assessment Toolkit, IT, IT Security, Regulatory, Risk, Risk Assessment, Risk Management
The Risks of Spreadsheets in Cybersecurity and Why It’s Time to Move On As regulators phase out legacy tools like the Cybersecurity Assessment Toolkit (CAT), it’s the perfect opportunity for institutions to rethink their approaches to governance and risk management....
by Zach Duke | Feb 13, 2025 | Cybersecurity, Banking, Community Banking, Information Security Officer, Regulatory, Risk Assessment
In an industry where cybersecurity threats continue to evolve, community banks must ensure that governance and oversight processes are airtight. Yet, many still rely on spreadsheets to manage critical security tasks, compliance tracking, and risk assessments. While...
by Beth Sumner | Feb 8, 2024 | User Access, Governance, MFA, Multi-Factor Authentication, Risk Assessment
In the rapidly evolving landscape of banking technology and cybersecurity, understanding and implementing effective Identity and Access Management (IAM) strategies is more crucial than ever. Yet, we understand that delving into the complexities of IAM can be daunting....
