Archive for 'Business Continuity' Category
The Four Basic Truths of System Security
By Dan Hadaway - Last updated: Sunday, January 1, 2023
System Security and Cybersecurity are not the same thing. . . Another one of those Dan’s New Leaf Posts, meant to inspire thought about IT Governance . . . . Regarding “information security,” the last thirty years have seen an evolution of frameworks, laws, and assessment approaches which intimidate the management team with their complexity. […]
My Take on the 36 Hour Rule
By Dan Hadaway - Last updated: Wednesday, March 9, 2022
It doesn’t cover us. . . . . . but we’ll agree to it anyway. Another one of those Dan’s New Leaf Posts, meant to inspire thought about IT Governance . . . . I thought I’d write a quick DNL about the new 36 hour rule. It’s due in May, so I am not […]
How the New Rule Applies to infotex
By Adam Reynolds - Last updated: Monday, February 21, 2022
(It does not) But it’s “crazy complicated and seemingly circular.” A new article meant to inspire thought about IT Governance… Note: You can read the article where Adam discussed the rule itself here: FDIC and OCC Release New Incident Notification Rules. The new interagency Computer-Security Incident Notification Requirements rule includes requirements not only for banking organizations, […]
FDIC and OCC Release New Incident Notification Rules
By Adam Reynolds - Last updated: Monday, January 31, 2022
An update to your Incident Response and Business Continuity Plans will be required . . . . . . but will not replace any previous rules! A new article meant to inspire thought about IT Governance… Note: We have included a copy of the publication for your full review at the end of the article. Click […]
An Overview of the FFIEC Architecture, Infrastructure, and Operations Booklet
By Adam Reynolds - Last updated: Monday, July 26, 2021
Our Lead Non-Technical Auditor takes a look at the new AIO Guidance… Architecture, Infrastructure, and Operations (AIO) is the latest booklet released by the Federal Financial Institutions Examination Council (FFIEC) in their line of IT Examination Handbooks. It is an update to their 2004 Operations booklet and, as the name implies, expands into the areas […]
Notes on Disaster Recovery
By Dan Hadaway - Last updated: Thursday, November 5, 2020
An Analogy… …About Taking Better Notes Another one of those Dan’s New Leaf Posts, meant to inspire thought about IT Governance . . . . An interesting set of metaphors arose out of our efforts to improve our time management practices at infotex. In the spirit of sound strategic planning, we as a team decided […]
Zoom Security: No longer an Oxymoron
By Reynolds | Hadaway - Last updated: Tuesday, July 14, 2020
Lessons Learned from Zoom’s Rise… The only constant is change. An illustration of impermanence in information security. Zoom’s popularity is in a large part thanks to its ease of use and low cost. How can you go wrong with an application that is popular, cost effective, and easy to use? Good question, easy answer: security. […]
The infotex Pandemic Posture
By Dan Hadaway - Last updated: Thursday, March 12, 2020
infotex has been closely monitoring the impact of the Coronavirus… Another one of those Dan’s New Leaf Posts, meant to inspire thought about IT Governance . . . . While news reports indicate the risk is still low, the risk is increasing, and thus the application of adequate business continuity controls is paramount. One of […]
FFIEC Releases Updated Pandemic Guidance
By Vigilize - Last updated: Monday, March 9, 2020
As reports of Coronavirus spread, the agency has updated its 2007 guidance… An article review. As what began as a few isolated incidents late last year have bloomed into a what some are calling a pandemic, fears of Coronavirus (also known as COVID-19) have spread into nearly all sectors…and banking is no exception. In light […]
FFIEC Updates Business Continuity Guidelines
By Vigilize - Last updated: Monday, November 18, 2019
New Guidance On Business Continuity Is Now Available… An article review. As part of a continuing effort to remain up-to-date as technology evolves, the FFIEC has announced the first updates to their guidance on business continuity management since 2015. The new Business Continuity Management Booklet is available now and describes “principles and practices for information […]
System Security and Cybersecurity are not the same thing. . . Another one of those Dan’s New Leaf Posts, meant to inspire thought about IT Governance . . . . Regarding “information security,” the last thirty years have seen an evolution of frameworks, laws, and assessment approaches which intimidate the management team with their complexity. […]
It doesn’t cover us. . . . . . but we’ll agree to it anyway. Another one of those Dan’s New Leaf Posts, meant to inspire thought about IT Governance . . . . I thought I’d write a quick DNL about the new 36 hour rule. It’s due in May, so I am not […]
How the New Rule Applies to infotex
By Adam Reynolds - Last updated: Monday, February 21, 2022
(It does not) But it’s “crazy complicated and seemingly circular.” A new article meant to inspire thought about IT Governance… Note: You can read the article where Adam discussed the rule itself here: FDIC and OCC Release New Incident Notification Rules. The new interagency Computer-Security Incident Notification Requirements rule includes requirements not only for banking organizations, […]
FDIC and OCC Release New Incident Notification Rules
By Adam Reynolds - Last updated: Monday, January 31, 2022
An update to your Incident Response and Business Continuity Plans will be required . . . . . . but will not replace any previous rules! A new article meant to inspire thought about IT Governance… Note: We have included a copy of the publication for your full review at the end of the article. Click […]
An Overview of the FFIEC Architecture, Infrastructure, and Operations Booklet
By Adam Reynolds - Last updated: Monday, July 26, 2021
Our Lead Non-Technical Auditor takes a look at the new AIO Guidance… Architecture, Infrastructure, and Operations (AIO) is the latest booklet released by the Federal Financial Institutions Examination Council (FFIEC) in their line of IT Examination Handbooks. It is an update to their 2004 Operations booklet and, as the name implies, expands into the areas […]
Notes on Disaster Recovery
By Dan Hadaway - Last updated: Thursday, November 5, 2020
An Analogy… …About Taking Better Notes Another one of those Dan’s New Leaf Posts, meant to inspire thought about IT Governance . . . . An interesting set of metaphors arose out of our efforts to improve our time management practices at infotex. In the spirit of sound strategic planning, we as a team decided […]
Zoom Security: No longer an Oxymoron
By Reynolds | Hadaway - Last updated: Tuesday, July 14, 2020
Lessons Learned from Zoom’s Rise… The only constant is change. An illustration of impermanence in information security. Zoom’s popularity is in a large part thanks to its ease of use and low cost. How can you go wrong with an application that is popular, cost effective, and easy to use? Good question, easy answer: security. […]
The infotex Pandemic Posture
By Dan Hadaway - Last updated: Thursday, March 12, 2020
infotex has been closely monitoring the impact of the Coronavirus… Another one of those Dan’s New Leaf Posts, meant to inspire thought about IT Governance . . . . While news reports indicate the risk is still low, the risk is increasing, and thus the application of adequate business continuity controls is paramount. One of […]
FFIEC Releases Updated Pandemic Guidance
By Vigilize - Last updated: Monday, March 9, 2020
As reports of Coronavirus spread, the agency has updated its 2007 guidance… An article review. As what began as a few isolated incidents late last year have bloomed into a what some are calling a pandemic, fears of Coronavirus (also known as COVID-19) have spread into nearly all sectors…and banking is no exception. In light […]
FFIEC Updates Business Continuity Guidelines
By Vigilize - Last updated: Monday, November 18, 2019
New Guidance On Business Continuity Is Now Available… An article review. As part of a continuing effort to remain up-to-date as technology evolves, the FFIEC has announced the first updates to their guidance on business continuity management since 2015. The new Business Continuity Management Booklet is available now and describes “principles and practices for information […]
(It does not) But it’s “crazy complicated and seemingly circular.” A new article meant to inspire thought about IT Governance… Note: You can read the article where Adam discussed the rule itself here: FDIC and OCC Release New Incident Notification Rules. The new interagency Computer-Security Incident Notification Requirements rule includes requirements not only for banking organizations, […]
An update to your Incident Response and Business Continuity Plans will be required . . . . . . but will not replace any previous rules! A new article meant to inspire thought about IT Governance… Note: We have included a copy of the publication for your full review at the end of the article. Click […]
An Overview of the FFIEC Architecture, Infrastructure, and Operations Booklet
By Adam Reynolds - Last updated: Monday, July 26, 2021
Our Lead Non-Technical Auditor takes a look at the new AIO Guidance… Architecture, Infrastructure, and Operations (AIO) is the latest booklet released by the Federal Financial Institutions Examination Council (FFIEC) in their line of IT Examination Handbooks. It is an update to their 2004 Operations booklet and, as the name implies, expands into the areas […]
Notes on Disaster Recovery
By Dan Hadaway - Last updated: Thursday, November 5, 2020
An Analogy… …About Taking Better Notes Another one of those Dan’s New Leaf Posts, meant to inspire thought about IT Governance . . . . An interesting set of metaphors arose out of our efforts to improve our time management practices at infotex. In the spirit of sound strategic planning, we as a team decided […]
Zoom Security: No longer an Oxymoron
By Reynolds | Hadaway - Last updated: Tuesday, July 14, 2020
Lessons Learned from Zoom’s Rise… The only constant is change. An illustration of impermanence in information security. Zoom’s popularity is in a large part thanks to its ease of use and low cost. How can you go wrong with an application that is popular, cost effective, and easy to use? Good question, easy answer: security. […]
The infotex Pandemic Posture
By Dan Hadaway - Last updated: Thursday, March 12, 2020
infotex has been closely monitoring the impact of the Coronavirus… Another one of those Dan’s New Leaf Posts, meant to inspire thought about IT Governance . . . . While news reports indicate the risk is still low, the risk is increasing, and thus the application of adequate business continuity controls is paramount. One of […]
FFIEC Releases Updated Pandemic Guidance
By Vigilize - Last updated: Monday, March 9, 2020
As reports of Coronavirus spread, the agency has updated its 2007 guidance… An article review. As what began as a few isolated incidents late last year have bloomed into a what some are calling a pandemic, fears of Coronavirus (also known as COVID-19) have spread into nearly all sectors…and banking is no exception. In light […]
FFIEC Updates Business Continuity Guidelines
By Vigilize - Last updated: Monday, November 18, 2019
New Guidance On Business Continuity Is Now Available… An article review. As part of a continuing effort to remain up-to-date as technology evolves, the FFIEC has announced the first updates to their guidance on business continuity management since 2015. The new Business Continuity Management Booklet is available now and describes “principles and practices for information […]
Our Lead Non-Technical Auditor takes a look at the new AIO Guidance… Architecture, Infrastructure, and Operations (AIO) is the latest booklet released by the Federal Financial Institutions Examination Council (FFIEC) in their line of IT Examination Handbooks. It is an update to their 2004 Operations booklet and, as the name implies, expands into the areas […]
An Analogy… …About Taking Better Notes Another one of those Dan’s New Leaf Posts, meant to inspire thought about IT Governance . . . . An interesting set of metaphors arose out of our efforts to improve our time management practices at infotex. In the spirit of sound strategic planning, we as a team decided […]
Zoom Security: No longer an Oxymoron
By Reynolds | Hadaway - Last updated: Tuesday, July 14, 2020
Lessons Learned from Zoom’s Rise… The only constant is change. An illustration of impermanence in information security. Zoom’s popularity is in a large part thanks to its ease of use and low cost. How can you go wrong with an application that is popular, cost effective, and easy to use? Good question, easy answer: security. […]
The infotex Pandemic Posture
By Dan Hadaway - Last updated: Thursday, March 12, 2020
infotex has been closely monitoring the impact of the Coronavirus… Another one of those Dan’s New Leaf Posts, meant to inspire thought about IT Governance . . . . While news reports indicate the risk is still low, the risk is increasing, and thus the application of adequate business continuity controls is paramount. One of […]
FFIEC Releases Updated Pandemic Guidance
By Vigilize - Last updated: Monday, March 9, 2020
As reports of Coronavirus spread, the agency has updated its 2007 guidance… An article review. As what began as a few isolated incidents late last year have bloomed into a what some are calling a pandemic, fears of Coronavirus (also known as COVID-19) have spread into nearly all sectors…and banking is no exception. In light […]
FFIEC Updates Business Continuity Guidelines
By Vigilize - Last updated: Monday, November 18, 2019
New Guidance On Business Continuity Is Now Available… An article review. As part of a continuing effort to remain up-to-date as technology evolves, the FFIEC has announced the first updates to their guidance on business continuity management since 2015. The new Business Continuity Management Booklet is available now and describes “principles and practices for information […]
Lessons Learned from Zoom’s Rise… The only constant is change. An illustration of impermanence in information security. Zoom’s popularity is in a large part thanks to its ease of use and low cost. How can you go wrong with an application that is popular, cost effective, and easy to use? Good question, easy answer: security. […]
infotex has been closely monitoring the impact of the Coronavirus… Another one of those Dan’s New Leaf Posts, meant to inspire thought about IT Governance . . . . While news reports indicate the risk is still low, the risk is increasing, and thus the application of adequate business continuity controls is paramount. One of […]
FFIEC Releases Updated Pandemic Guidance
By Vigilize - Last updated: Monday, March 9, 2020
As reports of Coronavirus spread, the agency has updated its 2007 guidance… An article review. As what began as a few isolated incidents late last year have bloomed into a what some are calling a pandemic, fears of Coronavirus (also known as COVID-19) have spread into nearly all sectors…and banking is no exception. In light […]
FFIEC Updates Business Continuity Guidelines
By Vigilize - Last updated: Monday, November 18, 2019
New Guidance On Business Continuity Is Now Available… An article review. As part of a continuing effort to remain up-to-date as technology evolves, the FFIEC has announced the first updates to their guidance on business continuity management since 2015. The new Business Continuity Management Booklet is available now and describes “principles and practices for information […]
As reports of Coronavirus spread, the agency has updated its 2007 guidance… An article review. As what began as a few isolated incidents late last year have bloomed into a what some are calling a pandemic, fears of Coronavirus (also known as COVID-19) have spread into nearly all sectors…and banking is no exception. In light […]
New Guidance On Business Continuity Is Now Available… An article review. As part of a continuing effort to remain up-to-date as technology evolves, the FFIEC has announced the first updates to their guidance on business continuity management since 2015. The new Business Continuity Management Booklet is available now and describes “principles and practices for information […]