Blog

Last time we had a new series for IT was in 1990, that's 25 years ago! In the past 30 days there has been significant activity around cybersecurity between NIST and FFIEC.

Read More...

Great questions this week from bankers on the Cybersecurity Assessment process and how to interpret the results. I wanted to provide some general feedback on how to interpret your Risk/Maturity Relationship.

Read More...

The question that has been discussed in detail by examiners, bankers, and experts is this – “Is the FFIEC Cybersecurity Assessment Tool required?” I want to highlight a few clear facts that will hopefully help you decide, not necessarily is the tool required, but should I complete it today?

Read More...

As promised in their 2014 Cybersecurity Observations publication, the FFIEC has released new guidance in the form of a Cybersecurity Assessment Tool. As one would expect, it has a heavy focus on CEO and Board level involvement, as well as tying controls to other FFIEC and NIST resources in...

Read More...

Many financial institutions and business customers have experienced the type of electronic banking theft known as Corporate Account Takeover (CATO). With this type of compromise, thieves attack the customer’s computer system and use this access to fraudulently change the ACH origination file.

Read More...