The Bedel Security Blog

Information security expertise exclusively for you.

Sign Up Today

2 min read

How to Approach Third Party Reviews

Brian Petzold: Nov 21, 2025

One of the most important processes in cybersecurity for financial institutions today is third-party due diligence. However, it is also one of the most burdensome. There are ways to make the process easier.

Information Security Program Vendor Management Risk Assessment Third-Party Due Diligence Regulatory Compliance
Read More

1 min read

Vendor Data Sharing: Why “Need to Know” Is a Must for Financial Institutions

Errica Padgett: Nov 14, 2025

Vendors play a crucial role in helping financial institutions deliver modern, efficient, and client-focused services. But with every data exchange...

Information Security Program Vendor Management GLBA Due Diligence Third-Party Risk Management Regulatory Compliance Data Protection
Read More

4 min read

MFA Prompt Bombing: When Multi-Factor Authentication Becomes a Nuisance — and a Risk

Andrew Hernandez: Nov 7, 2025

Multi-factor authentication (MFA) is widely considered one of the best affordable controls for preventing account takeover. But like every security...

Threats Incident Response MFA Multi-factor Authentication User Testing and Training
Read More

3 min read

Managing Bank-wide Change: Why Cybersecurity Should Lead the Conversation

Jordan Rosiak: Oct 31, 2025

Change is a constant in banking. Whether it’s rolling out a new digital banking platform, upgrading your core, or going through a merger, most banks...

Information Security Program Regulation Governance FFIEC Cybersecurity Risk Management Community Banking NIST-CSF Change Management
Read More

2 min read

Measuring Cybersecurity That Matters: KRIs Every Financial Institution Should Track

John Freerksen: Oct 24, 2025

For regulators, auditors, and your board, good cybersecurity isn’t just about having controls in place—it’s about proving they work. That’s where...

Information Security Program Incident Response Credit Unions Risk Management Community Banking KRI Key Risk Indicators Regulatory Compliance NIST-CSF
Read More

2 min read

5 Simple Steps to a Proactive Information Security Program

Trisha Durkin: Oct 17, 2025

If your Information Security Program feels more like you’re constantly putting out fires than preventing them, you’re not alone. Many community banks...

Information Security Program Strategic Planning Governance Banks Credit Unions Audit Risk Management Community Banking Proactive Compliance
Read More

2 min read

Moving from the CAT to CSF: A More Strategic Path for Community Financial Institutions

Chris Bedel: Oct 10, 2025

Cybersecurity Assessment Tool CAT FFIEC Banking NIST-CSF CAT Replacement
Read More

1 min read

Congratulations, Cory Poupore, CISSP, vCISO Senior Advisor!

Laura Zeck: Oct 7, 2025

vCISO Virtual CISO Bedel Security Team
Read More

2 min read

Think outside the Inbox: Combating Modern Social Engineering Threats

Stephanie Goetz: Oct 3, 2025

Social engineering attacks have long been a critical concern for institutions, with email-based phishing dominating headlines and incident reports....

SMS User Testing and Training Vishing Cybersecurity Awareness Training Social Engineering Smishing
Read More

2 min read

Ransomware Trends in 2025

Brian Petzold: Sep 26, 2025

Back in May 2024, I wrote that there were signs ransomware might finally be on the decline. I have continued to monitor various sources regarding...

Risk Threats Incident Response Ransomware Cybersecurity Banking
Read More
1 2 3 4 5 Next