The Bedel Security Blog

Information security expertise exclusively for you.

Sign Up Today
Bank executive reading the Bedel Security blog on her desktop.

Governance (3)

2 min read

The FDIC InTREX Gets Audited

Brian Petzold: Feb 10, 2023

While the FFIEC has released three major guidance updates since July 2019, the FDIC has not updated its examination program to include the newer...

Policy Controls Governance FFIEC Access & Authentication Audit Exam GLBA
Read More

1 min read

Outsourcing IT

Vance Monical: Aug 26, 2022

It’s common practice for financial institutions to outsource some or all of their Information Technology (IT) functions to a Managed Service Provider...

Vendor Management Governance Banks IT Outsourcing 3rd party Third-Party
Read More

3 min read

Change, Conflict and Culture

Stephanie Goetz: Jul 15, 2022

We have many institutions either going through or coming out of a large amount of change. It seems like there’s always some new guidance, product, or...

CISO Information Security Program Governance CISO Services vCISO Virtual CISO Outsourced CISO In-house CISO Banks Credit Unions Culture
Read More

2 min read

Confessions of a Professional Worrier

Brian Petzold: Jul 8, 2022

A few weeks ago, in my life outside of cybersecurity, a person said to me: “You are always thinking three steps ahead of the rest of us”. I am not...

Risk CISO Information Security Program Governance CISO Services vCISO Virtual CISO Outsourced CISO In-house CISO Banks Credit Unions Culture
Read More

2 min read

What Does it Mean to be a Good Partner?

Stephanie Goetz: Apr 29, 2022

While the definition of a partner is fairly broad, its principles apply to a very broad spectrum of relationships. In the cybersecurity realm, this...

Information Security Program Vendor Management Governance CISO Services vCISO Virtual CISO Outsourced CISO In-house CISO Banks Credit Unions Culture Board of Directors
Read More

2 min read

Managing the Relationship Between Information Technology and Information Security

Vance Monical: Mar 18, 2022

It’s easy to use the terms “Information Technology (IT)” and “Information Security (IS)” interchangeably. They are equally important but serve...

CISO Information Security Program Regulation Governance CISO Services vCISO Virtual CISO Outsourced CISO In-house CISO Banks Credit Unions Culture
Read More

2 min read

Meaningful Governance

Vance Monical: Jan 7, 2022

Most information security professionals understand the compliance and business requirements of keeping management informed of the Information...

CISO Information Security Program Governance CISO Services vCISO Virtual CISO Outsourced CISO In-house CISO Banks Credit Unions Culture Board of Directors
Read More

2 min read

Backups vs. Retention

Brian Petzold: Nov 19, 2021

We often run into situations where different staff in an institution have different understandings of the goals and operations of their backup...

Risk Threats CISO Information Security Program Controls Governance CISO Services vCISO Virtual CISO Outsourced CISO In-house CISO Banks Credit Unions
Read More

6 min read

Independent Collaboration Part 2: A Framework for Outsourcing IT in Financial Institutions

Chris Bedel: May 28, 2021

This article is the second of a 2-part series on building an effective outsourcing strategy for the various components of IT for financial...

CISO Information Security Program Governance
Read More

4 min read

Independent Collaboration Part 1: A Concept for Outsourcing IT in Financial Institutions

Chris Bedel: Apr 30, 2021

It sounds like a total oxymoron: Independent Collaboration. On the Predictive Index, those two words are on opposing ends of the spectrum when it...

Risk Information Security Program Vendor Management Governance
Read More
Prev 1 2 3 4 Next