ECAT – Compliance Guru • FFIEC Guidance

Use Technology to Build an Automated InfoSec

Read More

Incident Notification Requirements for Banks

View Infographic

New Cyber Incident Notification Rules

Watch Video

Late Night Exam Questions

By Tom Hinkel | In Ask the Guru

Ask the Guru: How Can I Best Determine My Cyber Risk Profile?

Hey Guru! We just completed the Cybersecurity Assessment, so now we have our current risk and control maturity levels identified. Can we draw any conclusions about our average risk and control levels? For example, most of our risks are in the Least and Minimal areas, but we do have a few Moderate as well. Can we […]

What You Need to Know

By Tom Hinkel | In Hot Topics

FFIEC Rewrites the Information Security IT Examination Handbook

In the first update in over 10 years, the FFIEC just completely rewrote the definitive guidance on their expectations for managing information systems in financial institutions. This was widely expected, as the IT world has changed considerably since 2006. There is much to unpack in this new handbook, starting with what appears to be a […]

By Tom Hinkel | In Hot Topics

FFIEC Releases Cybersecurity Assessment Tool

UPDATE: Safe Systems just released their Enhanced CyberSecurity Assessment Toolkit (ECAT) – This enhanced version of the FFIEC toolkit addresses the biggest drawback of the tool; the ability to collect, summarize, and report your risk and control maturity levels. Once risks and controls have been assessed (Step 1 below), institutions will now be better able […]

Stay up to date with these pandemic resources for community banking.See COVID-19 Resources

+

Use Technology to Build an Automated InfoSec

Read More

Incident Notification Requirements for Banks

View Infographic

New Cyber Incident Notification Rules

Watch Video

Late Night Exam Questions

By Tom Hinkel | In Ask the Guru

Ask the Guru: How Can I Best Determine My Cyber Risk Profile?

Hey Guru! We just completed the Cybersecurity Assessment, so now we have our current risk and control maturity levels identified. Can we draw any conclusions about our average risk and control levels? For example, most of our risks are in the Least and Minimal areas, but we do have a few Moderate as well. Can we […]

What You Need to Know

By Tom Hinkel | In Hot Topics

FFIEC Rewrites the Information Security IT Examination Handbook

In the first update in over 10 years, the FFIEC just completely rewrote the definitive guidance on their expectations for managing information systems in financial institutions. This was widely expected, as the IT world has changed considerably since 2006. There is much to unpack in this new handbook, starting with what appears to be a […]

By Tom Hinkel | In Hot Topics

FFIEC Releases Cybersecurity Assessment Tool

UPDATE: Safe Systems just released their Enhanced CyberSecurity Assessment Toolkit (ECAT) – This enhanced version of the FFIEC toolkit addresses the biggest drawback of the tool; the ability to collect, summarize, and report your risk and control maturity levels. Once risks and controls have been assessed (Step 1 below), institutions will now be better able […]