2 min read
Meaningful Governance
Most information security professionals understand the compliance and business requirements of keeping management informed of the Information...
Banks (7)
2 min read
Log4Shell Response for Community Financial Institutions
This post is intended to help community financial institutions appropriately prioritize their response efforts to the Log4Shell vulnerability. If...
2 min read
Extending Security Controls Beyond the Office
Over the past several years, organizations have allocated considerable resources to protect their Information Technology environment. Historically,...
2 min read
Backups vs. Retention
We often run into situations where different staff in an institution have different understandings of the goals and operations of their backup...
2 min read
Cyber New Year’s Resolution: Start with a Gut Check
Ever get that feeling that you don’t know what you don’t know about the effectiveness of your cybersecurity program?
2 min read
Tricky Phish Testing
Phishing remains one of the top threats to organizations today. Every user regularly receives emails designed to trick them into clicking on a link,...
3 min read
Multi-factor Authentication Threats Heat Up
Just a few months ago, we wrote an article about the dangers of using SMS (text) to support multi-factor authentication (MFA), called Breaking the...
1 min read
Resource for your Customers: 1-Page Cybersecurity Checklist For Small Businesses
Recently, I was presenting to a risk management forum at a banking association on cybersecurity and the question came up as to whether my company...
2 min read
Training Your Board
Being on the board of a financial institution is not easy. Board members are expected to not only be knowledgeable about the operational and...
2 min read
The Regular Risk Assessment Revolution
The cybercriminals are still on top of their game, changing targets and tactics. The work-from-home revolution continues and the drive for automation...