Seven trends impacting Information Security Officers of Small Institutions! Another one of those Dan’s New Leaf Posts, meant to inspire thought about IT Governance . . . . Welcome to the Magnificent Seven, my annual predictive article, affectionately dubbed “M7,” about the seven trends in bank technology that will impact the Information Security Officers of small banks […]

A Webinar Back by popular demand! Based on what Dan is finding in reviews of several audits where Clients talked us into accepting shortcuts, Dan will review several shortcuts (that your auditor and/or examiner MAY agree with).  

While we’re not a news service, we often use current events to comment on trends and our services. This blog is intended to get people thinking about topics and trends in Technology Risk Management, through our article reviews, as well as through original blog articles about current events and our MSSP services (such as our […]

Welcome IBA Forum attendees! Looking to set up your own program for people to work from home? Use this checklist to make sure that all of your policies and procedures are covering all of the things that you need in order to do so! Download Here    

A short. This presentation is intended for those who are planning to participate in an infotex incident response test. Please let us know what questions you have, when we have our Plan Walkthrough and Test Plan Approval meeting!  

An Update to the FFIEC Outsourced Cloud Computing Document In April 2020, the FFIEC released their “Joint Statement on Risk Management for Cloud Computing Services” as an update to their 2012 statement “Outsourced Cloud Computing.” The 2012 statement was a short, four-page document that addressed the key elements of outsourced cloud computing as identified in […]

Another awareness poster for YOUR customers (and users).  Now that we have our own employees aware, maybe it’s time to start posting content for our customers! Download the large versions here: Awareness Poster (Portrait) Awareness Poster (Landscape) You are welcome to print out and distribute this around your office.  

Hiding in a VirtualBox VM, the new Ragnar Locker ransomware is currently undetectable… An article review. Ransomware and other malicious programs often utilize techniques to evade detection by security software, but a newly discovered piece of ransomware has raised the bar by hiding inside a virtual machine. The new ransomware–called Ragnar Locker–was detailed in a […]

A Webinar Short Small banks who outsource network supports have a conundrum on their hands: How do we ensure proper due diligence on a critical vendor, with possession of information, that cannot afford the standard audit regime? This webinar short attempts to answer that.

Another awareness poster for YOUR customers (and users).  Now that we have our own employees aware, maybe it’s time to start posting content for our customers! Download the large version here: Awareness Poster (Portrait) You are welcome to print out and distribute this around your office.