3 min read
CrowdStrike and Supply Chain Risk Management—What Can we Learn From this Experience?
Wow, how much technology has changed in the past 15 years? I remember when “vendor” reviews were uncommon, technology was hosted in-house in 95% of...
3rd party
2 min read
Consent Orders Put Focus on Third-Party Risk Management
There have been multiple consent orders issued recently which have made it clear that regulators are starting to enforce new third-party risk...
2 min read
Navigating the Intersection of AI and Cybersecurity
In today’s rapidly evolving digital landscape, the rise of Artificial Intelligence (AI) has become a game-changer for businesses. As we explore how...
2 min read
Banks, Credit Unions, and AI; OH MY: Beyond Cybersecurity AI Danger
Picking up from where we left off, while the cybersecurity aspects of Generative AI are paramount, the journey of understanding its integration into...
2 min read
Addressing the MOVEit Vulnerability: Actions for Financial Institutions
Financial institutions rely on numerous third-party providers to support their operations and deliver essential services. However, these partnerships...
2 min read
Reviewing the New Interagency Third-Party Risk Management Guidance
On June 6th, the Federal Reserve, FDIC, and OCC released new interagency guidance on third-party risk management. The new guidance, based on existing...
2 min read
The 1 Thing You Can Do to Improve Your Cybersecurity Program
Let's use our imaginations for a few minutes.
1 min read
The What, Why, and How of Complementary User Entity Controls
Reviewing Complementary User Entity Controls (CUECs) is an important part of any financial institution’s third-party management program. However, we...
2 min read
Self-Assessing Authentication & Access Risk
A little over a year ago, banking regulators released the “Authentication and Access to Financial Institution Services and Systems” guidance. Since...