Stephanie Goetz

2 min read

What You Can do About the Okta Compromise

Stephanie Goetz: Mar 25, 2022

News this week brought us word of something very disappointing, a breach in a large player in the identity services company, Okta. If I’m being 100% honest here, it was an unfortunate eventuality given the mass role out of multifactor authentication...

Risk Threats Vulnerability and Patch Management CISO Information Security Program Regulation Controls CISO Services vCISO Virtual CISO Outsourced CISO MFA In-house CISO Banks Credit Unions Access & Authentication
Read More

2 min read

Russian Cyberthreats

Stephanie Goetz: Feb 25, 2022

This week the threat from Russia to the Ukraine has turned to reality. The attack was preceded by cyber threats probably long before the physical...

Risk Threats Vulnerability and Patch Management CISO Information Security Program Incident Response CISO Services vCISO Virtual CISO Outsourced CISO In-house CISO Banks Credit Unions
Read More

2 min read

Keep an Eye on API Security

Stephanie Goetz: Nov 5, 2021

Application programming interfaces, or APIs, enable applications to exchange data and functionality easily with other applications and users in or...

Risk Threats Vulnerability and Patch Management Controls Risk Assessment CISO Services vCISO Virtual CISO In-house CISO
Read More

3 min read

Multi-factor Authentication Threats Heat Up

Stephanie Goetz: Oct 15, 2021

Just a few months ago, we wrote an article about the dangers of using SMS (text) to support multi-factor authentication (MFA), called Breaking the...

Risk Information Security Program Remote Access SMS MFA Banks Credit Unions
Read More

2 min read

The Regular Risk Assessment Revolution

Stephanie Goetz: Sep 10, 2021

The cybercriminals are still on top of their game, changing targets and tactics. The work-from-home revolution continues and the drive for automation...

Risk CISO Information Security Program Regulation Risk Assessment VPN Virtual CISO Banks
Read More

3 min read

Guidance from the FBI- Their Efforts and Your Role

Stephanie Goetz: Aug 6, 2021

After spending some time this week helping our customers with ransomware preparation, I found a statement on the FBI’s website that would be a great...

Risk Threats CISO Information Security Program Strategic Planning Incident Response CISO Services vCISO Virtual CISO Banks Ransomware
Read More

2 min read

FFIEC AIO Manual

Stephanie Goetz: Jul 16, 2021

FFIEC released a new handbook replacing the previous Operations Booklet with the new Architecture, Infrastructure, and Operations (AIO) Booklet on...

CISO Information Security Program Regulation vCISO Banks Credit Unions FFIEC
Read More

3 min read

5 Reasons Information Security is a Team Sport

Stephanie Goetz: Jun 18, 2021

In our line of work, we see many institution’s environments, cultures, and positions on the journey of their information security programs. One of...

Risk Threats Information Security Program
Read More

2 min read

Hybrid Work Force Security

Stephanie Goetz: May 14, 2021

There’s yet another debate growing post-COVID. It’s not vaccinations, masks, or whether it’s safe to eat at a restaurant, it’s when and how much...

Risk VPN Remote Access
Read More

3 min read

Five Tips for Tough Days as a (C)ISO

Stephanie Goetz: Apr 2, 2021

Risk CISO Information Security Program
Read More
Prev 1 2 3 4 5 Next