Today, I want to dive into a topic that’s been keeping me up at night: the AI (artificial intelligence) arms race happening right under our noses. Bad actors are increasingly exploiting AI to...

As financial institutions increasingly embrace the benefits of cloud computing, the importance of cloud security cannot be understated. While the cloud offers numerous advantages, such as...

Today, I want to discuss a topic that often goes unnoticed but can have far-reaching consequences: password reuse. In this fast-paced digital age, convenience plays a significant role in our daily...

Small financial institutions, such as community banks and credit unions, face unique challenges when it comes to cybersecurity. One of the biggest challenges is the shortage of cybersecurity...

I want to talk about something that’s been on my mind a lot lately: corporate account takeover (CATO). As someone who has worked in the cybersecurity space for most of my career, I know firsthand...

If you are new to managing cybersecurity for a financial institution, I’m sure you’ll have a lot of questions. More specifically, “Where do I start?” Managing cybersecurity for a financial...

Over the next few months, Information Security leaders will be presenting their annual security update to the Board as required by the Gramm Leach Bliley Act (GLBA). It is meant to provide a summary...

What exactly is a user access review? In its simplest form, this review is a process that certifies that users’ (including vendors’) access within systems are appropriate and legitimate leveraging...

The worst time to develop an Incident Response Plan for dealing with a security incident is during an actual incident. It’s not a matter of “if” but “when” your organization will be the victim of a...

It’s common practice for financial institutions to outsource some or all of their Information Technology (IT) functions to a Managed Service Provider (MSP) to gain access to higher levels of...