Finosec Official Blog

User Access Review Best Practices: Step 2 - Start With The Most Important

FINOSEC posted in Cybersecurity, Innovation, Fintech, Banking, community banking, User Access, User Access Reporting, Information Security Officer, Cyber

0 Comments

We learned about the importance of a System Map in Step One: Building the Foundation, last week.

This week, we are discussing Step 2 – Start with the Most Important. In this critical step in the user access review process, you will identify the most important systems by identifying the high-risk activities each system performs.

Read More

FINOSEC’s technology-based pain reliever for your user access reviews

FINOSEC posted in Cybersecurity, Innovation, What's New, Latest News, Banking, community banking, User Access, User Access Reporting, information security, infosec

0 Comments

Financial institutions have long viewed user access reviews as a double edged sword. On one hand, regulators require them. They’re a crucial component in managing to least privilege. But they’re a challenge to conduct on a regular schedule. And if you have to rely on legacy technology and outdated manual processes, the frustrations can compound logarithmically.

But you don’t need to be stuck in the past. Help is on the way.

Read More

There is more to Cyber Insurance than you may think.

FINOSEC posted in Cybersecurity, Innovation, Fintech, Cyber Attack, Banking, community banking, insurance, Security, information security, infosec, Cyber

0 Comments

Cybersecurity insurance is an increasingly important component of your financial institution’s overall information security program. When a data breach or other hostile technology event occurs, cybersecurity insurance proceeds can provide funds to repair your hardware, recover intellectual property, and even pay for the work you do to reverse adverse reputational impacts.

Read More

Be ready for Cybersecurity Awareness Month – use Finosec’s Cybersecurity Awareness Toolkit

FINOSEC posted in Cybersecurity, Innovation, Banking, cybersecurity awareness month, toolkit, community banking, information security, 2022

0 Comments

Cybersecurity Awareness Month occurs in October. The US Cybersecurity and Infrastructure Agency (CISA) created it to increase general awareness of emerging online threats and how best to avoid them.

Read More

How do you manage access to all of your banking systems?

FINOSEC posted in Cybersecurity, Innovation, Banking, User Access, User Access Reporting, board, board training

0 Comments

User Access

There are likely a high number of systems in place at your institution. Running a successful financial institution relies heavily on tools and technologies that will improve the efficiencies of you and your team.

Read More

How to better manage your financial institution’s information security systems

FINOSEC posted in Cybersecurity, Innovation, Banking, system map, board, board training, information security, System Inventory

0 Comments

System Inventory Video

It’s vital for you to fully understand the information security management systems you have in place

But it’s a nuisance to keep track of them all. First, you need to know the status of every component, especially for the systems you outsourced. Then, you must also understand the different kinds of information the systems store, how it’s stored, how data is transmitted, and what kinds of information is transmitted.

Read More

What key processes in IT Controls does your institution have in place?

FINOSEC posted in Cybersecurity, Banking, board, board training, Risk Assessment, IT Controls, information security, IT, Processess

0 Comments

Managing Risk

Read More

Why Does Independence In Your Information Security Officer Matter?

FINOSEC posted in Cybersecurity, Innovation, Banking, board training, information security, independence, Information Security Officer

0 Comments

ISO Independence

A vital component of your information security program is an information security officer that is independent and adhering to appropriate segregation of duties as outlined by regulatory expectations. 

Read More

Exams are never fun. But we know how to make bank regulator exams easier!

FINOSEC posted in Cybersecurity, Innovation, Banking, Exam, Exam Readiness, preparedness

0 Comments

And let’s acknowledge the tests associated with bank examiners definitely fall into the “not fun” category.

Read More

Computer-Security Incident Notification Requirements for Banking Organizations

FINOSEC posted in Cybersecurity, Innovation, Banking, Notification, Computer, Security

0 Comments

Have you addressed the Computer-Security Incident Notification Requirements for Banking Organizations?   Full compliance has been extended to May 1, 2022.   Five questions to ask:

Read More