The Bedel Security Blog

Information security expertise exclusively for you.

Sign Up Today

2 min read

The Risk Based Audit

Chris Bedel: Nov 17, 2022

We have a meeting every Monday morning to do a status update on each of the 40 financial institutions we serve as their virtual Information Security Officers. It’s an opportunity to solve unique problems as a group, identify areas where some...

Risk Policy Banks Audit IT ISO
Read More

2 min read

Self-Assessing Authentication & Access Risk

Brian Petzold: Nov 4, 2022

A little over a year ago, banking regulators released the “Authentication and Access to Financial Institution Services and Systems” guidance. Since...

Threats Information Security Program Regulation Risk Assessment CISO Services vCISO Virtual CISO Banks Credit Unions FFIEC Access Access & Authentication CISO as a service Audit 3rd party Third-Party Passwords Access Reviews
Read More

1 min read

Effective User Access Reviews

Vance Monical: Oct 28, 2022

What exactly is a user access review? In its simplest form, this review is a process that certifies that users’ (including vendors’) access within...

CISO Information Security Program Controls CISO Services vCISO Virtual CISO Outsourced CISO In-house CISO Banks Access Access & Authentication CISO as a service Audit IT 3rd party Access Reviews
Read More

3 min read

How to Change Your Virtual CISO (or how to avoid it to begin with)

Chris Bedel: Oct 21, 2022

There’s been an interesting trend in the virtual CISO industry over the last several months.

CISO Information Security Program CISO Services vCISO Virtual CISO Outsourced CISO In-house CISO Banks Credit Unions CISO as a service
Read More

2 min read

Tools to Check Out in the Cybersecurity Resource Guide

Stephanie Goetz: Oct 14, 2022

Last week, we saw the Federal Financial Institutions Council (FFIEC) announce an update to its Cybersecurity Resource Guide. It was originally...

Risk CISO Information Security Program CISO Services vCISO Virtual CISO Outsourced CISO In-house CISO Banks Credit Unions FFIEC Ransomware CISO as a service IT
Read More

1 min read

Preparing for a Security Incident

Vance Monical: Sep 23, 2022

The worst time to develop an Incident Response Plan for dealing with a security incident is during an actual incident. It’s not a matter of “if” but...

Risk Threats Policy CISO Information Security Program Incident Response CISO Services Virtual CISO Outsourced CISO In-house CISO Credit Unions Ransomware CISO as a service Exam
Read More

2 min read

5 Lessons I Learned From Interviewing A Crypto Expert

Chris Bedel: Sep 16, 2022

Last week, I had the chance to interview Wes Spencer, from FifthWall Solutions, on cryptocurrency in community banking. We’ve had so much good...

Regulation vCISO Virtual CISO Banks Board of Directors IT cryptocurrency Blockchain Crypto
Read More

3 min read

What Is A Strong Password in 2022?

Brian Petzold: Sep 2, 2022

Risk Threats CISO Information Security Program Regulation Controls CISO Services vCISO Virtual CISO Outsourced CISO MFA In-house CISO Banks Board of Directors Access & Authentication CISO as a service Exam Passwords
Read More

1 min read

Outsourcing IT

Vance Monical: Aug 26, 2022

It’s common practice for financial institutions to outsource some or all of their Information Technology (IT) functions to a Managed Service Provider...

Vendor Management Governance Banks IT Outsourcing 3rd party Third-Party
Read More

4 min read

Does It Align With Our Mission?

Chris Bedel: Aug 19, 2022

We intend to change the way community banks manage cybersecurity. We intend to build an amazing company where our people can thrive. We intend to...

CISO Information Security Program CySPOT CISO Services vCISO Virtual CISO Outsourced CISO Banks Culture Board of Directors CISO as a service
Read More
Prev 15 16 17 18 19 Next