With all eyes focused on AI regulations and the sunset of the Cybersecurity Assessment Tool (CAT), the recently released FFIEC Development, Acquisition, and Maintenance (DA&M) has almost slid under the radar. However, this new booklet is a complete rewrite...
Finosec Tools and Resources to Empower You and Your Team
Finosec BlogTopics
Topics
Get notified on new insights from Finosec now!
Be the first to know about new Finosec blogs to grow your knowledge of the cybersecurity governance industry today!ChatGPT and AI in Banking
When it comes to information security and cyber threats, in the past years, topics like ransomware, malware, patching, cyber insurance, and …
5 Steps For User Access Review Best Practices
Secure your financial institution with our User Access Review Best Practices white paper. 5 steps to simplify the process & reduce completion time.
Supporting CURE Cancer while at ICBA LIVE
One of the most difficult moments in my career happened several years back at an ICBA Live event in New Orleans. I can immediately go back to that moment…
How the ICBA ThinkTECH changed the trajectory of our business
We started by jumping in and helping customers manage their information security and cybersecurity. A platform that would simplify complex processes.
The Customer is Why You are in Business
“The Customer is Why You are in Business” Allen Duke, Mentor & Father.
Step 5 – User Access Review Best Practices: Increase Maturity
The goal is to focus on increasing standardization to develop a more mature and routine approach to user access reviews by focusing on three key areas.
Step 4 – User Access Review Best Practices: Review System Access and Permissions
Step Four in the FINOSEC user access review best practice series is to ensure users who have access to your systems have legitimate duties that justify not only access but their specific permissions for those systems.
Step 3 – User Access Review Best Practices: Risk Rate Systems & Access
user access review best practices series is to rate and prioritize the system risks you identified as the most important systems
User Access Review Best Practices: Step 2 – Start With The Most Important
You should always start this process with the highest-risk systems. These typically include things such as active directory, core processors, wire transfers, and more. Overall, every system you have for which there is privileged access will usually be a higher-risk system.
User Access Review Best Practices: Step 1 – Building the Foundation
User access reviews are important, Examiners expect you to complete them regularly, They’re a crucial element of your overall cybersecurity program…