How are we going to do this? As leaders in the banking industry, we often find ourselves saying those exact words. We want to be self-reliant—and why not? We’ve gotten where we are today by...

Being the founder and CEO of a virtual CISO firm, I get asked questions about professional development from time to time. How do I advance my career in cybersecurity management? How do we grow our...

This blog post is intended for anyone managing a chief information security officer (CISO) or looking to fill the CISO role. This might also be helpful if you're a CISO, and you feel like this is...

Recently we’ve received a number of requests for “Key Controls” from auditors or examiners for the financial institutions we work with. Fortunately, for those that have our Risk Management module,...

In today's video, we're going to explain what it means to be independent and qualified and why it's so important for an ISO or CISO to be both. {% video_player "embed_player" overrideable=False,...

I recently had the opportunity to attend, and speak at, the Southeast Community Bank I.T. Rightsourcing Conference in Georgia. It was a great 1-day event with speakers representing various areas of...

A few months ago I was listening to a podcast. The business owner being interviewed wasn't in cybersecurity but had a consulting business. And he talked about how he operated his business with a...

Let's use our imaginations for a few minutes. Let's pretend that your leadership team is concerned about the financial fitness of your bank. Whether it was identified internally, whether examiners...

I've been asked about the state of cyber insurance multiple times over the past couple of months. It started with a Q&A session at an emerging technology committee at one of the state banking...

We have a meeting every Monday morning to do a status update on each of the 40 financial institutions we serve as their virtual Information Security Officers. It’s an opportunity to solve unique...