2 min read
Insider Cybersecurity Threats: What Financial Institutions Need to Know
Community financial institutions face a wide range of cybersecurity threats, but one of the most concerning is insider threats. Insider threats refer...
Risk (3)
3 min read
Discussions Triggered from the LastPass Breach
Over the past month, many have written about the latest LastPass breach. If you have not kept up with the breach, you can see the disclosure from...
1 min read
Board Cyber Awareness
Over the next few months, Information Security leaders will be presenting their annual security update to the Board as required by the Gramm Leach...
3 min read
Cyber Insurance is Broken. How Do We Fix it?
I've been asked about the state of cyber insurance multiple times over the past couple of months.
2 min read
The Risk Based Audit
We have a meeting every Monday morning to do a status update on each of the 40 financial institutions we serve as their virtual Information Security...
2 min read
Tools to Check Out in the Cybersecurity Resource Guide
Last week, we saw the Federal Financial Institutions Council (FFIEC) announce an update to its Cybersecurity Resource Guide. It was originally...
1 min read
Preparing for a Security Incident
The worst time to develop an Incident Response Plan for dealing with a security incident is during an actual incident. It’s not a matter of “if” but...
2 min read
Charging Dr. Ransomware
Moises Luis Zagala Gonzalez, a 55-year-old Venezuelan cardiologist, has been charged with developing the Jigsaw v.2 and Thanos ransomware strains,...
2 min read
Where Does Managing Aggregator Risk Belong?
A little over a year ago, bank regulators published new proposed guidance on managing third-party risk. One of the more controversial topics in this...