The Bedel Security Blog

Information security expertise exclusively for you.

Sign Up Today

In-house CISO

4 min read

5 Soft Skills Every CISO Should Have

Chris Bedel: Sep 15, 2023

Being the founder and CEO of a virtual CISO firm, I get asked questions about professional development from time to time.

CISO Information Security Program In-house CISO ISO Communication Trust
Read More

4 min read

How to Manage a CISO to Avoid Burnout

Chris Bedel: Jul 27, 2023

This blog post is intended for anyone managing a chief information security officer (CISO) or looking to fill the CISO role. This might also be...

CISO Information Security Program vCISO Virtual CISO In-house CISO ISO
Read More

2 min read

The 1 Thing You Can Do to Improve Your Cybersecurity Program

Chris Bedel: Jan 27, 2023

Let's use our imaginations for a few minutes.

CISO CISO Services Virtual CISO In-house CISO Banks Culture Audit 3rd party Third-Party
Read More

1 min read

Effective User Access Reviews

Vance Monical: Oct 28, 2022

What exactly is a user access review? In its simplest form, this review is a process that certifies that users’ (including vendors’) access within...

CISO Information Security Program Controls CISO Services vCISO Virtual CISO Outsourced CISO In-house CISO Banks Access Access & Authentication CISO as a service Audit IT 3rd party Access Reviews
Read More

3 min read

How to Change Your Virtual CISO (or how to avoid it to begin with)

Chris Bedel: Oct 21, 2022

There’s been an interesting trend in the virtual CISO industry over the last several months.

CISO Information Security Program CISO Services vCISO Virtual CISO Outsourced CISO In-house CISO Banks Credit Unions CISO as a service
Read More

2 min read

Tools to Check Out in the Cybersecurity Resource Guide

Stephanie Goetz: Oct 14, 2022

Last week, we saw the Federal Financial Institutions Council (FFIEC) announce an update to its Cybersecurity Resource Guide. It was originally...

Risk CISO Information Security Program CISO Services vCISO Virtual CISO Outsourced CISO In-house CISO Banks Credit Unions FFIEC Ransomware CISO as a service IT
Read More

1 min read

Preparing for a Security Incident

Vance Monical: Sep 23, 2022

The worst time to develop an Incident Response Plan for dealing with a security incident is during an actual incident. It’s not a matter of “if” but...

Risk Threats Policy CISO Information Security Program Incident Response CISO Services Virtual CISO Outsourced CISO In-house CISO Credit Unions Ransomware CISO as a service Exam
Read More

3 min read

What Is A Strong Password in 2022?

Brian Petzold: Sep 2, 2022

Risk Threats CISO Information Security Program Regulation Controls CISO Services vCISO Virtual CISO Outsourced CISO MFA In-house CISO Banks Board of Directors Access & Authentication CISO as a service Exam Passwords
Read More

2 min read

Where Does Managing Aggregator Risk Belong?

Brian Petzold: Aug 5, 2022

A little over a year ago, bank regulators published new proposed guidance on managing third-party risk. One of the more controversial topics in this...

Risk CISO Risk Assessment CISO Services vCISO Virtual CISO Outsourced CISO In-house CISO Banks Credit Unions Access & Authentication CISO as a service
Read More

3 min read

Change, Conflict and Culture

Stephanie Goetz: Jul 15, 2022

We have many institutions either going through or coming out of a large amount of change. It seems like there’s always some new guidance, product, or...

CISO Information Security Program Governance CISO Services vCISO Virtual CISO Outsourced CISO In-house CISO Banks Credit Unions Culture
Read More
1 2 3 4 5 Next