The Bedel Security Blog

Information security expertise exclusively for you.

Sign Up Today

Regulation

2 min read

Ruminations on the New Dodd-Frank Section 1033 Rule

Brian Petzold: Dec 19, 2024

When the Dodd-Frank Act was passed in 2010, it included Section 1033. This section required the Consumer Financial Protection Bureau (CFPB) to create...

Regulation Governance Third-Party Standard Section 1033 rule Dodd-Frank CFPB
Read More

2 min read

Control Assessments Vs. Risk Assessments

Brian Petzold: Jul 19, 2024

When we first start working with new institutions, it is not unusual for us to see them struggling because they have focused their efforts on...

Risk Regulation Controls Risk Assessment Risk Management Control Assessment
Read More

2 min read

Don't Forget the Bank Service Company Act

Trisha Durkin: Jun 21, 2024

Let’s discuss an old regulation that seems to be picking up new life in recent regulatory examinations, the Bank Service Company Act (BSCA). This Act...

Policy Regulation Banks Audit Exam Guidance
Read More

2 min read

Artificial Intelligence–How will it be regulated

Stephanie Goetz: Jun 7, 2024

Institutions are looking at services using Artificial Intelligence (AI), such as loan decisioning, resume review, and process automation. Using these...

Risk Regulation Controls Banks IT AI Cybersecurity
Read More

1 min read

Regulatory Compliance vs True Security

Vance Monical: May 10, 2024

Today, I’m going to tackle the tightrope walk between regulatory compliance and real-deal security within the financial sector. It’s like juggling...

Threats Regulation Banks Culture Bedel Security Team Balance
Read More

2 min read

Consent Orders Put Focus on Third-Party Risk Management

Brian Petzold: Apr 12, 2024

There have been multiple consent orders issued recently which have made it clear that regulators are starting to enforce new third-party risk...

Risk Regulation 3rd party Third-Party Risk Management
Read More

2 min read

Reviewing the New Interagency Third-Party Risk Management Guidance

Brian Petzold: Jun 9, 2023

On June 6th, the Federal Reserve, FDIC, and OCC released new interagency guidance on third-party risk management. The new guidance, based on existing...

Regulation Vendor Management Banks Credit Unions 3rd party Third-Party OCC FDIC
Read More

1 min read

Regulators Becoming More Prescriptive

Brian Petzold: Dec 9, 2022

Recently, the New York Department of Financial Services (“DFS”) released a proposed update to its 2017 “Cybersecurity Requirements for Financial...

Policy Information Security Program Regulation Risk Assessment NYCRR
Read More

2 min read

Self-Assessing Authentication & Access Risk

Brian Petzold: Nov 4, 2022

A little over a year ago, banking regulators released the “Authentication and Access to Financial Institution Services and Systems” guidance. Since...

Threats Information Security Program Regulation Risk Assessment CISO Services vCISO Virtual CISO Banks Credit Unions FFIEC Access Access & Authentication CISO as a service Audit 3rd party Third-Party Passwords Access Reviews
Read More

2 min read

5 Lessons I Learned From Interviewing A Crypto Expert

Chris Bedel: Sep 16, 2022

Last week, I had the chance to interview Wes Spencer, from FifthWall Solutions, on cryptocurrency in community banking. We’ve had so much good...

Regulation vCISO Virtual CISO Banks Board of Directors IT cryptocurrency Blockchain Crypto
Read More
1 2 3 Next