FDIC Article Provides Insights on Where to Focus Your Efforts on Cybersecurity
It’s no secret that Governance, Threat Intelligence, Security Awareness Training, and Patch Management are all part of a solid cybersecurity program,...
1 min read
Three Critical Challenges for Bank Audit Committees - #1: Cybersecurity
Chris Bedel : May 17, 2016
Because Cybersecurity is a business issue, not just an IT issue, the risk that it brings should be addressed by all areas of the financial institution. Right?
While there is an increasing number of articles and blogs calling for executive management and board involvement in cybersecurity, it's also important that the audit committee plays a role in managing the risk.
In a recent article on BankDirector.com, Sal Inserra points out that cybersecurity is the #1 challenge for bank audit committees. While Sal doesn't go into a lot of depth in the article, it's still good to see a push for other areas of the bank (audit in this case) to get involved in information security.
Some key points in Sal's article for audit staff to focus on cyber:
- The importance of threat information sharing
- Bringing in outside expertise to the audit committee for risk insight and mitigation strategies
- Become very familiar with the CAT
- Keep up with interagency guidance
Consider Cybersecurity in Succession Planning for the Board
Chris Bedel : Jul 15, 2016
Benjamin Franklin is quoted as saying “If you fail to plan, you are planning to fail.” And that old quote couldn’t be more applicable to bank board...
The 1 Thing that is Getting Overlooked by Banks on Secure Email
Chris Bedel : Mar 14, 2016
Dan Hadaway, with Infotex, goes into great detail on the risks associated with misconfiguration of "secure" email in one of his recent blog posts. He...