

Back to Blog

Computer-Security Incident Notification Requirements for Banking Organizations

By Finosec

April 27, 2022

Have you addressed the Computer-Security Incident Notification Requirements for Banking Organizations? Full compliance has been extended to May 1, 2022.

Five questions to ask:

Have we updated our Incident Response Plan?
Do we have documentation of who and how we will notify the regulators?
Do our critical third party vendors have the correct contacts for notification?
Has our Business Continuity Plan been updated to match the verbiage in the guidance?
When is your next Incident Response Test and how will you update it?

More from Finosec

Why Community Banks Need to Rethink Vendor Management

Why Community Banks Need to Rethink Vendor Management

by Zach Duke | Oct 23, 2025

In today’s banking landscape, risk doesn’t just come from inside the building. Third-party vendors are now central to how financial institutions operate. They provide everything from core processing to cybersecurity tools. But with that reliance comes responsibility....

Making the Case: Why Vendor Management Platforms Are a Strategic Win for Community Banks

Making the Case: Why Vendor Management Platforms Are a Strategic Win for Community Banks

by Zach Duke | Oct 9, 2025

Information Security Officers wear a lot of hats: compliance coordinator, risk watchdog, IT translator, and sometimes the voice of reason in a room full of competing priorities. One of the toughest challenges? Convincing senior leadership that vendor management isn't...

What the Sunset of the FFIEC CAT Means for Vendor Management and What to Do Next

What the Sunset of the FFIEC CAT Means for Vendor Management and What to Do Next

by Zach Duke | Sep 25, 2025

With the FFIEC CAT officially sunset on August 2025, banks are rethinking how they manage cybersecurity oversight. But one area that can’t get lost in the shuffle? Vendor management. In fact, third-party risk is getting more scrutiny, not less, under new guidance. The...

Step 2 in Replacing the FFIEC CAT: Mapping & Documenting Your Information Security Controls

Step 2 in Replacing the FFIEC CAT: Mapping & Documenting Your Information Security Controls

by Zach Duke | Jul 24, 2025

With the FFIEC Cybersecurity Assessment Tool (CAT) being sunset, financial institutions are evaluating their next move. Finosec’s modernized Cyber Assessment Tool offers a streamlined alternative that builds on the foundation of your existing work, without starting...

Step One in Replacing the FFIEC CAT: Modernizing Inherent Risk with Finosec

by Zach Duke | Jul 10, 2025

With the official sunset of the FFIEC Cybersecurity Assessment Tool (CAT) approaching, banks across the country are asking the same question: “What comes next?” For many institutions, the CAT has long served as the cornerstone of their cybersecurity self-assessment...

Sunset Of The CAT: Executive Insights from the Cybersecurity Assessment Toolkit

Sunset Of The CAT: Executive Insights from the Cybersecurity Assessment Toolkit

by Zach Duke | Jun 26, 2025

One of the most overlooked challenges in cybersecurity governance isn’t the technology itself, it’s the communication. For many institutions, the gap between information security teams and executive leadership can lead to misunderstandings, misalignment, and missed...

Talk To An Expert Now 770.268.2765