The Bedel Security Blog

Information security expertise exclusively for you.

Sign Up Today

Incident Response

Bedel Security Friday5 graphic asking what’s in your bank's cybersecurity policy.

2 min read

What’s In Your Policy?

John Freerksen: May 15, 2026

A bank’s information security policy is one of the few documents that directly connects technical risk to executive accountability. Most policies...

Policy Governance Incident Response FFIEC Risk Management Compliance Third-Party Risk Management Regulatory Compliance
Read More
Bedel Security Friday5 graphic on managing cybersecurity with limited resources.

3 min read

Managing Cybersecurity with Limited Resources

Trisha Durkin: Feb 27, 2026

If you’re a community bank or credit union, “limited resources” isn’t a temporary condition; it’s your operating model.

Threats Governance Incident Response NIST Cybersecurity Risk Management Tabletop Test Third-Party Risk Management
Read More
Business handshake illustrating trust and verification in managed security services.

2 min read

Trust but Verify: Managing your Managed Security Service Provider

Stephanie Goetz: Feb 13, 2026

Perhaps you outsourced your security monitoring and incident response to a reputable firm years ago, or are considering a change to outsource for the...

Vendor Management Incident Response MSP Third-Party Risk Management
Read More

4 min read

MFA Prompt Bombing: When Multi-Factor Authentication Becomes a Nuisance — and a Risk

Andrew Hernandez: Nov 7, 2025

Multi-factor authentication (MFA) is widely considered one of the best affordable controls for preventing account takeover. But like every security...

Threats Incident Response MFA Multi-factor Authentication User Testing and Training
Read More

2 min read

Measuring Cybersecurity That Matters: KRIs Every Financial Institution Should Track

John Freerksen: Oct 24, 2025

For regulators, auditors, and your board, good cybersecurity isn’t just about having controls in place—it’s about proving they work. That’s where...

Information Security Program Incident Response Credit Unions Risk Management Community Banking KRI Key Risk Indicators Regulatory Compliance NIST-CSF
Read More

2 min read

Ransomware Trends in 2025

Brian Petzold: Sep 26, 2025

Back in May 2024, I wrote that there were signs ransomware might finally be on the decline. I have continued to monitor various sources regarding...

Risk Threats Incident Response Ransomware Cybersecurity Banking
Read More

1 min read

A Strong Defense Wins Championships—and Protects Your Data

Errica Padgett: Sep 19, 2025

In football, it’s often said that defense wins championships. The same principle applies to information security: the strength of your defensive...

Threats Information Security Program Incident Response Risk Management NIST-CSF Data Protection
Read More

2 min read

Evaluating Incident Risk Severity Levels in Your Incident Response Plan

John Freerksen: Aug 29, 2025

When a security incident occurs in a financial institution, one of the first and most critical steps is categorization. The speed and accuracy of...

Risk Incident Response Incident Severity Levels
Read More

1 min read

The Rising Threat of Deepfake Technology in Cybersecurity

Errica Padgett: Aug 15, 2025

In recent years, cybercriminals have expanded their toolkit beyond phishing emails and malware to include a newer, more sinister threat—deepfake...

Threats Incident Response Cybersecurity Cybersecurity Awareness Training
Read More

2 min read

Incident Response Theater: Are We Just Playing the Role of Preparedness?

Brian Petzold: Aug 1, 2025

The curtain rises. The scene: a quiet sunny day on the teller line.

Incident Response Tabletop Test Compliance
Read More
1 2 3 Next