Stephanie Goetz

2 min read

Charging Dr. Ransomware

Stephanie Goetz: Aug 12, 2022

Moises Luis Zagala Gonzalez, a 55-year-old Venezuelan cardiologist, has been charged with developing the Jigsaw v.2 and Thanos ransomware strains, which would make him one of the most productive ransomware developers in history. He supposedly became...

Risk Cyber Law Risk Assessment Ransomware
Read More

3 min read

Change, Conflict and Culture

Stephanie Goetz: Jul 15, 2022

We have many institutions either going through or coming out of a large amount of change. It seems like there’s always some new guidance, product, or...

CISO Information Security Program Governance CISO Services vCISO Virtual CISO Outsourced CISO In-house CISO Banks Credit Unions Culture
Read More

2 min read

What Does it Mean to be a Good Partner?

Stephanie Goetz: Apr 29, 2022

While the definition of a partner is fairly broad, its principles apply to a very broad spectrum of relationships. In the cybersecurity realm, this...

Information Security Program Vendor Management Governance CISO Services vCISO Virtual CISO Outsourced CISO In-house CISO Banks Credit Unions Culture Board of Directors
Read More

2 min read

What You Can do About the Okta Compromise

Stephanie Goetz: Mar 25, 2022

News this week brought us word of something very disappointing, a breach in a large player in the identity services company, Okta. If I’m being 100%...

Risk Threats Vulnerability and Patch Management CISO Information Security Program Regulation Controls CISO Services vCISO Virtual CISO Outsourced CISO MFA In-house CISO Banks Credit Unions Access & Authentication
Read More

2 min read

Russian Cyberthreats

Stephanie Goetz: Feb 25, 2022

This week the threat from Russia to the Ukraine has turned to reality. The attack was preceded by cyber threats probably long before the physical...

Risk Threats Vulnerability and Patch Management CISO Information Security Program Incident Response CISO Services vCISO Virtual CISO Outsourced CISO In-house CISO Banks Credit Unions
Read More

2 min read

Keep an Eye on API Security

Stephanie Goetz: Nov 5, 2021

Application programming interfaces, or APIs, enable applications to exchange data and functionality easily with other applications and users in or...

Risk Threats Vulnerability and Patch Management Controls Risk Assessment CISO Services vCISO Virtual CISO In-house CISO
Read More

3 min read

Multi-factor Authentication Threats Heat Up

Stephanie Goetz: Oct 15, 2021

Just a few months ago, we wrote an article about the dangers of using SMS (text) to support multi-factor authentication (MFA), called Breaking the...

Risk Information Security Program Remote Access SMS MFA Banks Credit Unions
Read More

2 min read

The Regular Risk Assessment Revolution

Stephanie Goetz: Sep 10, 2021

The cybercriminals are still on top of their game, changing targets and tactics. The work-from-home revolution continues and the drive for automation...

Risk CISO Information Security Program Regulation Risk Assessment VPN Virtual CISO Banks
Read More

3 min read

Guidance from the FBI- Their Efforts and Your Role

Stephanie Goetz: Aug 6, 2021

After spending some time this week helping our customers with ransomware preparation, I found a statement on the FBI’s website that would be a great...

Risk Threats CISO Information Security Program Strategic Planning Incident Response CISO Services vCISO Virtual CISO Banks Ransomware
Read More

2 min read

FFIEC AIO Manual

Stephanie Goetz: Jul 16, 2021

FFIEC released a new handbook replacing the previous Operations Booklet with the new Architecture, Infrastructure, and Operations (AIO) Booklet on...

CISO Information Security Program Regulation vCISO Banks Credit Unions FFIEC
Read More
Prev 1 2 3 4 5 Next