

Back to Blog

Computer-Security Incident Notification Requirements for Banking Organizations

By Finosec

April 27, 2022

Have you addressed the Computer-Security Incident Notification Requirements for Banking Organizations? Full compliance has been extended to May 1, 2022.

Five questions to ask:

Have we updated our Incident Response Plan?
Do we have documentation of who and how we will notify the regulators?
Do our critical third party vendors have the correct contacts for notification?
Has our Business Continuity Plan been updated to match the verbiage in the guidance?
When is your next Incident Response Test and how will you update it?

More from Finosec

Breaking Free from Spreadsheets: Automating Access Management for Efficiency and Security

Breaking Free from Spreadsheets: Automating Access Management for Efficiency and Security

by Zach Duke | Mar 26, 2025

For Financial Institutions, ensuring secure and efficient access management is a top priority. Protecting sensitive financial data, maintaining regulatory compliance, and preventing unauthorized access are critical responsibilities. However, many institutions still...

The Hidden Costs of Spreadsheets in Exam & Audit Preparation

The Hidden Costs of Spreadsheets in Exam & Audit Preparation

by Zach Duke | Mar 6, 2025

Preparing for audits and exams can be an unnerving task, especially when spreadsheets are at the heart of the process. While spreadsheets have long been a go-to tool for many organizations, they often come with hidden costs that hinder efficiency. In this blog, we'll...

Sunsetting Of The Cybersecurity Assessment Toolkit: Next Steps

Sunsetting Of The Cybersecurity Assessment Toolkit: Next Steps

by Zach Duke | Feb 21, 2025

The Risks of Spreadsheets in Cybersecurity and Why It’s Time to Move On As regulators phase out legacy tools like the Cybersecurity Assessment Toolkit (CAT), it’s the perfect opportunity for institutions to rethink their approaches to governance and risk management....

Breaking Free from Spreadsheets: Simplifying Cybersecurity and Workflow Management

Breaking Free from Spreadsheets: Simplifying Cybersecurity and Workflow Management

by Zach Duke | Feb 13, 2025

In an industry where cybersecurity threats continue to evolve, community banks must ensure that governance and oversight processes are airtight. Yet, many still rely on spreadsheets to manage critical security tasks, compliance tracking, and risk assessments. While...

Why Spreadsheets Are Risky for Managing Cybersecurity and Risk Management

Why Spreadsheets Are Risky for Managing Cybersecurity and Risk Management

by Zach Duke | Jan 24, 2025

In the world of cybersecurity and third-party risk management, spreadsheets have become a popular tool. Institutions often use them for tasks such as tracking exceptions from audits, managing access rights, and conducting risk assessments. Despite their frequency of...

Why Management’s FDICIA Attestation Must Include an Understanding of Access Reviews

Why Management’s FDICIA Attestation Must Include an Understanding of Access Reviews

by Zach Duke | Dec 17, 2024

For financial institutions subject to FDICIA, the Federal Deposit Insurance Corporation Improvement Act, the annual management attestation is a critical declaration of compliance. It signifies that the institution’s internal controls over financial reporting (ICFR) are effective. One key control to validate is how user access reviews are performed.

Talk To An Expert Now 770.268.2765