Finosec Official Blog

Understanding R-SAT v2.0 - A Practical Guide for Information Security Officers: Part 2 of a 3 Part Series

Beth Sumner posted in Cybersecurity, Cyber Attack, Ransomware, Banks, Governance, CSBS, Multi-Factor Authentication, MFA, Financial Institutions, Digital Banking, Data Management

0 Comments

Introduction: Streamlining Data Management in Cybersecurity

Continuing our initial discussion in the 3-part series from the R-SAT v2.0, we turn to the core of data protection: data management. As an Information Security Officer, your role is pivotal in safeguarding your bank’s assets. Comprehensive protection begins with the knowledge that every system – and each piece of data within those systems - is known and accounted for and is managed with the utmost care.

Read More

Understanding R-SAT v2.0 – A Practical Guide for Information Security Officers: Part 1 of a 3 Part Series

Beth Sumner posted in Cybersecurity, Cyber Attack, Ransomware, Banks, Governance, CSBS, Multi-Factor Authentication, MFA, Financial Institutions, Digital Banking

0 Comments

Introduction: Navigating the New Cybersecurity Landscape

Welcome to the first installment of our in-depth three-part series, building upon our November 14th  webinar on the new Ransomware Self-Assessment tool (R-SAT v2.0). The new R-SAT was released by the Conference of State Bank Supervisors in mid/late October. 

Read More

Navigating the Ransomware Minefield: Key Takeaways from the CSBS Report on Financial Institutions & R-SAT 2.0

Scott McIlrath posted in Cybersecurity, Cyber Attack, Ransomware, Banks, Governance, CSBS, Multi-Factor Authentication, MFA, Financial Institutions, Digital Banking

0 Comments

As of October 24th, 2023, a new version of the Ransomware Self-Assessment Tool (R-SAT v2.0) has been published for banks to help mitigate new risks associated with ransomware attacks and identify security gaps.  

Read More

The Human Firewall: The First and Final Defense for Financial Institutions

Beth Sumner posted in Cybersecurity, Cyber Attack, cybersecurity awareness month, training, Security, Risk Review, Human Firewall

0 Comments

In today's rapidly evolving digital landscape, financial institutions are under constant threat from cyber adversaries. While policies, security information and event management (SIEM) systems, firewalls, and encryption are indispensable, there's an often-underestimated element: effective cybersecurity training for employees.

Read More

What Auditors and Examiners Expect You to Have Implemented For the Updated FFIEC Authentication Guidance

Zach Duke posted in Cybersecurity, FFIEC, User Access Reporting, preparedness, Risk Assessment, information security, Risk, Risk Review, infosec

0 Comments

The Federal Financial Institutions Examination Council (FFIEC) updated its Authentication Guidance in August 2021, which aims to standardize and enhance security measures for financial institutions. We are seeing a focus on these areas during exams and audits, and understanding these new guidelines is crucial for compliance and risk management.

Read More

Safeguarding Your Assets: Preventing Privilege Creep

Beth Sumner posted in Cybersecurity, system map, self assessment, User Access, User Access Reporting, training, preparedness, Risk Assessment, information security, Risk, Risk Review, infosec

0 Comments

Today, we’re delving into an essential topic that affects both the security and the integrity of your digital assets: privilege creep. In this blog, we’ll explore the potential risks, and provide you with actionable strategies to prevent this sneaky threat from undermining your cybersecurity efforts.

Read More

Supporting CURE Cancer while at ICBA LIVE

Zach Duke posted in Cybersecurity, Innovation, Banking, ICBA, Cure Cancer, ICBA Live

0 Comments

One of the most difficult moments in my career happened several years back at an ICBA Live event in New Orleans.   I can immediately go back to that moment…

Read More

How the ICBA ThinkTECH changed the trajectory of our business.

Zach Duke posted in Cybersecurity, Innovation, Banking, ICBA, infosec

0 Comments

 

Read More

The Customer is Why You are in Business

Zach Duke posted in Cybersecurity, What's New, Banking, information security, infosec

0 Comments

“The Customer is Why You are in Business”  Allen Duke, Mentor & Father.

Those who know me well have probably heard me talk about my father's impact on me and business.   For those of you who haven’t heard the passion I have related to these lessons I learned, here is some context:

My dad was a manufacturer sales representative for furniture companies, selling furniture to furniture stores across multiple states.  My dad was intentional about teaching me business lessons; some of the most memorable lessons were when I would travel with my dad.  As part of these trips, we would visit his customers all across the territory.  I learned so much from these trips and have many fond memories of the time with my dad…

One of the lessons that he continuously reiterated to me was that “The Customer is Why You are in Business.”   Being in business held a ton of weight, partly because my dad didn’t have a base salary; he only made an income if the furniture stores sold his furniture, and it was embedded in his deep-rooted integrity for going the extra mile.

In case you haven’t heard, we are ecstatic to announce that Beth Sumner has joined us as VP of Customer Success.  Beth has deep roots in community banking, technology, and information security.  As part of her role, she will be a facilitator for our customers to maximize the Finosec impact of helping our customers simplify information security and cybersecurity governance.  She will also be a conduit for our customers to give our team feedback on enhancements and improvements we can make to go the extra mile for our customers.  If you are a customer, be on the lookout for a meeting with Beth in the coming weeks, and if you have known Beth for as many years as I have, you know we are truly blessed to have her on the team.

Read More

Step 5 – User Access Review Best Practices: Increase Maturity

FINOSEC posted in Cybersecurity, Innovation, Banking, User Access, User Access Reporting, infosec

0 Comments

Read More