by Zach Duke | May 29, 2025 | PII Assessment, Banking, Community Banking, Cybersecurity, Governance, IT, Risk Assessment, User Access
Managing third-party risk, performing access reviews, and completing risk assessments are foundational elements of a sound information security program, especially in the banking industry. But these processes often rely on fragmented, outdated tools like spreadsheets....
by Zach Duke | May 1, 2025 | Automation, Access Mangement, Community Banking, Employee, IT, IT Security, User Access
In today’s fast-paced digital workplace, managing employee access to systems is more important and more complicated than ever before. Yet, many organizations still rely on outdated tools like spreadsheets to track who has access each system. While this might...
by Zach Duke | Apr 3, 2025 | Access Mangement, Community Banking, Cybersecurity, IT, User Access
If you’re gearing up for your next regulatory exam or audit, it might be time to pause and ask yourself one important question: how many spreadsheets are you using to manage the process? Chances are, it’s more than one. And if that’s the case, it may be time to...
by Zach Duke | Dec 17, 2024 | Access Mangement, Community Banking, Cybersecurity, FDICIA, FFIEC, Information Security, IT, User Access
For financial institutions subject to FDICIA, the Federal Deposit Insurance Corporation Improvement Act, the annual management attestation is a critical declaration of compliance. It signifies that the institution’s internal controls over financial reporting (ICFR)...
by Zach Duke | Nov 25, 2024 | Access Mangement, FFIEC, Information Security, IT, IT Security, Regulatory, User Access
Access management is a critical component of cybersecurity and compliance, especially for financial institutions where security expectations are paramount. The challenges surrounding permissions management, particularly during user access reviews, are increasing due...
by Zach Duke | Nov 7, 2024 | Risk Management, Community Banking, Cybersecurity, IT, IT Security, Uncategorized, User Access
As highlighted in a recent article from the Federal Reserve, managing third-party relationships and the access associated with those relationships is a critical component of Third-Party Risk Management (TPRM). The associated access third party vendors have to banking...