Andrew Hernandez

2 min read

Cracking Codes and Crushing Rocks: What Geology Can Teach Us About Cryptography

Andrew Hernandez: Sep 12, 2025

At first glance, geology and cryptography may seem worlds apart—one is the study of rocks, layers, and the passage of deep time; the other, the foundation of digital security in an age of zeroes and ones. But dig a little deeper (pun intended), and...

Threats Information Security Program Cybersecurity Encryption Cryptography
Read More

2 min read

From Compliance to Confidence

Andrew Hernandez: May 16, 2025

Building a Risk-Based Information Security Program for Community Banks For many community banks, passing a regulatory exam can feel like a victory...

Risk Assessment Cybersecurity Risk Management Regulatory Compliance NIST-CSF
Read More

5 min read

AI Model Risk Management in Financial Institutions

Andrew Hernandez: Mar 20, 2025

Today we’ll discuss our newest and perhaps most ubiquitous buzzword: AI (Artificial Intelligence). Identifying and mitigating risks of AI are...

Information Security Program AI Artificial Intelligence Risk Management DLP Regulatory Compliance
Read More

2 min read

Network Segmentation:  How Much Is Enough?

Andrew Hernandez: Jan 30, 2025

Network segmentation is one of those terms that gets thrown around a lot, like the principle of least privilege and role-based access, as if it was...

Risk Management Network Network Segmentation Monitoring & Oversight
Read More