The Bedel Security Blog

Information security expertise exclusively for you.

Sign Up Today

FFIEC

2 min read

NIST Releases Cybersecurity Framework 2.0

Stephanie Goetz: Mar 22, 2024

The National Institute for Standards and Technology released an update to its Cybersecurity Framework (CSF) late February. The CSF was originally...

Banks Credit Unions FFIEC NIST
Read More

2 min read

The FDIC InTREX Gets Audited

Brian Petzold: Feb 10, 2023

While the FFIEC has released three major guidance updates since July 2019, the FDIC has not updated its examination program to include the newer...

Policy Controls Governance FFIEC Access & Authentication Audit Exam GLBA
Read More

2 min read

Self-Assessing Authentication & Access Risk

Brian Petzold: Nov 4, 2022

A little over a year ago, banking regulators released the “Authentication and Access to Financial Institution Services and Systems” guidance. Since...

Threats Information Security Program Regulation Risk Assessment CISO Services vCISO Virtual CISO Banks Credit Unions FFIEC Access Access & Authentication CISO as a service Audit 3rd party Third-Party Passwords Access Reviews
Read More

2 min read

Tools to Check Out in the Cybersecurity Resource Guide

Stephanie Goetz: Oct 14, 2022

Last week, we saw the Federal Financial Institutions Council (FFIEC) announce an update to its Cybersecurity Resource Guide. It was originally...

Risk CISO Information Security Program CISO Services vCISO Virtual CISO Outsourced CISO In-house CISO Banks Credit Unions FFIEC Ransomware CISO as a service IT
Read More

2 min read

Is Your Risk Assessment Authentication & Access Ready?

Brian Petzold: Jan 21, 2022

In August, the FFIEC released new guidance titled “Authentication and Access to Financial Institution Services and Systems”. Because the guidance...

Risk Threats CISO Information Security Program CySPOT Regulation Controls Risk Assessment CISO Services Virtual CISO Outsourced CISO MFA In-house CISO Banks Credit Unions FFIEC Access Access & Authentication
Read More

2 min read

Log4Shell Response for Community Financial Institutions

Chris Bedel: Dec 17, 2021

This post is intended to help community financial institutions appropriately prioritize their response efforts to the Log4Shell vulnerability. If...

Risk Threats Vulnerability and Patch Management CISO Information Security Program Remote Access Incident Response CISO Services vCISO Virtual CISO Outsourced CISO In-house CISO Banks Credit Unions FFIEC
Read More

2 min read

FFIEC AIO Manual

Stephanie Goetz: Jul 16, 2021

FFIEC released a new handbook replacing the previous Operations Booklet with the new Architecture, Infrastructure, and Operations (AIO) Booklet on...

CISO Information Security Program Regulation vCISO Banks Credit Unions FFIEC
Read More