We are excited to be one of the three finalists for the #fintechsouth innovation challenge! To learn more click here!
With the official sunset of the FFIEC Cybersecurity Assessment Tool (CAT) approaching, banks across the country are asking the same question: “What comes next?” For many institutions, the CAT has long served as the cornerstone of their cybersecurity self-assessment...
One of the most overlooked challenges in cybersecurity governance isn’t the technology itself, it’s the communication. For many institutions, the gap between information security teams and executive leadership can lead to misunderstandings, misalignment, and missed...
It’s been a decade since the Cybersecurity Assessment Toolkit (CAT) was first introduced. For many institutions, especially community banks, it has become a familiar part of their cybersecurity routine. But with the recent decision by regulators to sunset the toolkit...
As highlighted in a recent article from the Federal Reserve, managing third-party relationships and the access associated with those relationships is a critical component of Third-Party Risk Management (TPRM). The associated access third party vendors have to banking systems is known as Access Management and is foundational for mitigating risks associated with third-party relationships. Access Management may be easy to overlook because it does not always reside with the same person or team as TPRM; making it difficult to provide critical oversight.
With increased regulatory focus, how should institutions be thinking of Access Management? Here are five steps your institution can take today to strengthen your third-party governance.
In the current economic environment, community banks face unique challenges such as rate compression, shrinking margins, liquidity and commercial real estate concerns. These factors make the upcoming budgeting season particularly daunting for IT and information...
Cybersecurity insurance is an increasingly important component of your financial institution’s overall information security program.
